Security Directory

Z

Zone Media OÜ

depile.ee

0

Depile.ee is an established Estonian e-commerce website specializing in beauty, health, and wellness products. The site offers a wide range of branded products including hair care, nail care, body care, massage items, and related accessories. The business targets both consumers and professionals in the beauty sector, primarily serving the Estonian market. The company behind the domain is Zone Media OÜ, with a domain age dating back to 2010, indicating a mature online presence. Technically, the website is built on Magento 2, leveraging modern web technologies such as RequireJS, jQuery, and FontAwesome. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site demonstrates good mobile optimization and SEO practices, with a clear navigation structure and responsive design. Performance is moderate, with room for optimization. From a security perspective, the website enforces HTTPS and includes several security headers, contributing to a good security posture. Cookie consent is implemented with a detailed mechanism allowing users to manage preferences, which aligns with GDPR requirements. However, the absence of a publicly accessible privacy policy and terms of service pages represents a compliance gap. No critical vulnerabilities or exposed sensitive data were detected. Overall, Depile.ee presents a professional and trustworthy e-commerce platform with solid technical foundations and security practices. To enhance compliance and trust, it is recommended to publish comprehensive privacy and terms of service documents and improve accessibility features. Regular security audits and updates to third-party scripts will further strengthen the site's security posture.

B

Baltresto

baltresto.com

0

Baltresto is a specialized manufacturer and retailer of high-quality wooden and fiberglass hot tubs and outdoor saunas, operating primarily in the EU market since 2008. The company offers a broad product range including wood-fired hot tubs, fiberglass hot tubs, hot tub liners, and sauna accessories, targeting consumers and businesses seeking durable and affordable private garden spa solutions. Their market position is supported by direct manufacturing and a 15+ year history, with localized partner sites in multiple European countries enhancing regional reach. Technically, the website is built on a mature WordPress and WooCommerce platform, utilizing popular plugins such as WPBakery Page Builder and WP Rocket for performance optimization. The site integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, Yandex Metrika, and Trustpilot reviews, reflecting a moderate to advanced digital maturity. Mobile optimization and SEO practices are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses domain status locks to prevent unauthorized domain changes. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement. No explicit security policies or incident response contacts are published, which could be enhanced to improve trust and compliance. Privacy compliance is basic with cookie consent implemented but no dedicated privacy policy page clearly identified. Overall, Baltresto presents a credible and professional online presence with solid business credibility and moderate security posture. Strategic improvements in security headers, DNSSEC, and privacy documentation would strengthen their security and compliance stance, supporting continued growth and customer trust.

V

Valio

valio.fi

0

Valio is a leading Finnish dairy and food company recognized for its innovation in the food sector. The website serves as a comprehensive platform showcasing their products, recipes, and corporate information targeted primarily at Finnish consumers. The company maintains a strong market position as an innovative food producer with a large operational scale. Technically, the website is built on WordPress with modern SEO and tracking tools such as Yoast SEO and Google Tag Manager, complemented by a cookie consent mechanism via OneTrust and an AI-powered chatbot from Boost.ai. The site demonstrates good mobile optimization, accessibility, and performance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, although explicit security policies and incident response information are not publicly found. Overall, the website reflects a professional and trustworthy digital presence aligned with the company's business identity.

F

Fairown

fairown.com

0

Fairown operates a buyback and credit system aimed at consumers who want to resell or dispose of products easily. The company positions itself as a niche retail service provider offering convenience and choice to customers. The website is built on the Wix platform, leveraging Wix Thunderbolt and standard web technologies, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and uses HTTPS with some JavaScript security hardening. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Additionally, the lack of privacy, cookie, and terms of service policies indicates gaps in compliance and transparency. Overall, while the business model and website content are clear and professional, the security and compliance posture require improvement to enhance trust and regulatory adherence.

K

Kõnelev Trumm OÜ

eksootika.ee

0

The website eksootika.ee represents a small Estonian e-commerce business named Kõnelev Trumm OÜ, specializing in exotic goods sourced from various Asian countries such as India, Indonesia, Thailand, and Nepal. The site offers a range of products including ethnic musical instruments, semi-precious stones, incense, clothing, and jewelry. The business targets consumers interested in unique Asian cultural products and operates primarily through an online store with additional wholesale options. The website is built on the Voog CMS platform, leveraging Voog's e-commerce capabilities, and integrates modern JavaScript libraries and Google Analytics for tracking and marketing purposes. Hosting is provided by Zone Media OÜ, consistent with the domain registration data.

W

Wine Library

winelibrary.com

0

Wine Library is a well-established online retailer specializing in wines, spirits, beer, and gourmet products. Founded in 1997, it has built a strong market presence in the United States with a medium-sized operation focused on e-commerce. The website offers a rich user experience with curated wine selections, expert ratings, wine clubs, and educational content, targeting wine enthusiasts and consumers seeking quality alcoholic beverages online. The business model centers on direct online sales complemented by subscription wine clubs and marketing via email and social media channels. Technically, the website leverages a modern technology stack including Ruby on Rails, Google Analytics, Facebook Pixel, and Cloudflare DNS/CDN services. The site is mobile-optimized with good SEO practices and uses several third-party marketing and analytics tools. Performance is moderate, with room for improvement in accessibility and some technical SEO aspects. From a security perspective, the site enforces HTTPS, uses CSRF tokens, and implements secure forms. However, it lacks DNSSEC, explicit security headers, and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, Wine Library presents a credible, professional, and secure online retail platform with minor gaps in privacy compliance and security transparency. Strategic improvements in cookie consent, security headers, and incident response disclosure would enhance trust and compliance.

A

Avera-Trading AS

avera.ee

0

Avera-Trading AS operates a professional e-commerce website focused on retailing cleaning chemicals, equipment, and hygiene products primarily in Estonia. Established in 2010, the company presents a well-structured online catalog with clear pricing and product categorization, targeting businesses and consumers seeking cleaning solutions. The website leverages WordPress and WooCommerce platforms, enhanced with popular plugins such as Yoast SEO and WPBakery Page Builder, indicating a mature digital infrastructure. Integration of Google Analytics and Tag Manager reflects a data-driven approach to marketing and user behavior analysis. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though explicit security headers and privacy policies are missing, representing compliance and security improvement opportunities. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and explicit security disclosures.

S

STARK Suomi

stark-suomi.fi

0

STARK Suomi operates as a significant retail entity in the Finnish construction sector, supplying building materials and related products primarily to professional builders and contractors. The website leverages modern web technologies including Angular and integrates with Google Tag Manager, Google Analytics, and Genesys Messenger for customer engagement and analytics. A comprehensive cookie consent mechanism is implemented, reflecting good privacy compliance practices. However, explicit privacy and security policies beyond cookie management are not directly present on the site. The security posture is strong with HTTPS and security headers properly configured, and no critical vulnerabilities detected. Overall, the site demonstrates a mature digital presence suitable for its market segment, though improvements in direct contact information and policy transparency could enhance trust and compliance.

U

Unterwegs Celle

unterwegs-celle.de

0

Unterwegs Celle is a small retail business specializing in outdoor equipment and apparel, targeting customers in the Celle region of Germany. The website serves as an online presence to complement their physical store, showcasing top outdoor brands and providing contact information for customer engagement. The business positions itself as a local specialist in outdoor retail, with a focus on quality brands and customer service. Technically, the website is built on WordPress CMS, utilizing popular plugins such as Smart Slider 3, Contact Form 7, and Cookiebot for cookie consent management. Hosting is provided by Timme Hosting, with multiple name servers indicating a stable infrastructure. The site demonstrates good SEO practices, mobile optimization, and basic accessibility features, though there is room for improvement in security headers and accessibility compliance. From a security perspective, the site enforces HTTPS and uses Cookiebot to manage user consent, including blocking of scripts until consent is given. Google Analytics is implemented with IP anonymization to enhance privacy compliance. However, explicit security policies, incident response contacts, and advanced security headers are not present, indicating a moderate security posture suitable for a small retail business but with opportunities for enhancement. Overall, the website is professional, functional, and compliant with GDPR requirements regarding privacy and cookie management. The risk level is moderate, with no critical vulnerabilities detected. Strategic recommendations include improving security headers, adding explicit security and incident response policies, and maintaining up-to-date software to mitigate potential risks.

L

Lindex Group Oyj

stockmanngroup.com

0

Lindex Group Oyj is a Finnish multinational retail company operating primarily in the fashion and department store sectors through its two main divisions: Lindex and Stockmann. Lindex is a leading Nordic fashion brand with a strong presence in 17 countries and online sales in 34 countries, focusing on women's and children's apparel, lingerie, and cosmetics. Stockmann operates quality department stores and e-commerce platforms in Finland and the Baltic countries. The company targets consumers seeking quality fashion and lifestyle products, leveraging a multichannel retail business model combining physical stores and digital commerce. The website reflects a professional corporate presence with comprehensive investor relations and sustainability information. Technically, the website is built on WordPress 6.8.1 with modern web technologies including jQuery and Google Tag Manager. It employs a cookie consent mechanism compliant with GDPR and integrates analytics tools such as Google Analytics and ContentSquare. The site is mobile-optimized and accessible, with good SEO practices. However, no explicit security headers were detected in the HTML source, which could be improved to enhance security posture. Security-wise, the site enforces HTTPS and uses cookie consent for privacy compliance. There is no visible security policy or incident response contact information published, which are areas for improvement. The absence of WHOIS registration data for the domain is a notable anomaly that raises questions about domain legitimacy, despite the professional appearance and content of the website. Overall, the website is well-designed and functional, supporting the company's business objectives effectively. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and verifying domain registration details to strengthen trust and compliance.

H

Hammerjack

hammerjack.ee

0

Hammerjack is an Estonian-based e-commerce retailer specializing in a wide range of tools, equipment, and fasteners catering to both professional and home users. The website offers an extensive catalog with over 20,000 products, structured into detailed categories for ease of navigation. The business targets professionals and DIY enthusiasts, positioning itself as a reliable supplier in the Estonian market. The platform is built on nopCommerce, leveraging modern web technologies and analytics tools such as Google Analytics 4 and Facebook Pixel for marketing and user behavior tracking. The website is multilingual, supporting Estonian, English, Russian, and Finnish languages, enhancing accessibility for a broader audience. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, although there is room for improvement in security headers and explicit security policies. Overall, the site demonstrates good technical maturity and business credibility, with a professional design and clear navigation. However, contact information and detailed legal/security policies are not prominently available, which could be enhanced to improve trust and compliance.

Z

Zephyr Ventilation

zephyronline.com

0

Zephyr Ventilation is a well-established premium kitchen appliance brand specializing in range hoods, wine coolers, and beverage coolers. The company targets homeowners and kitchen designers seeking stylish and innovative kitchen ventilation and refrigeration solutions. Their website reflects a medium-sized retail business with a strong focus on design and customer support, including a dedicated help center and parts store. Technically, the site is built on WordPress with WooCommerce, leveraging modern JavaScript libraries and marketing tools such as Google Tag Manager, Facebook Pixel, and Hotjar. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS and reCAPTCHA v3, but lacks DNSSEC and explicit security headers, and does not publish a security policy or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite extensive tracking. Overall, the domain is legitimate, long-standing, and consistent with the business identity.

C

Modebranschens Nyheter: E-handel, Varumärken och Interaktiv Kundupplevelse

consortiofashiongroup.com

0

ConsortioFashionGroup.com is a small-scale WordPress-based blog focused on delivering news and insights related to the fashion industry, specifically targeting e-commerce, brand strategies, and interactive customer experiences. The website content is primarily in Swedish and features articles authored by a consistent author, indicating a focused editorial approach. The business model centers on content publishing to attract fashion professionals and enthusiasts interested in digital marketing and investment trends within the fashion sector. Technically, the website leverages WordPress CMS with common web technologies such as jQuery and Bootstrap Grid for responsive design. Hosting and DNS services are provided via Cloudflare, ensuring reliable DNS resolution and HTTPS encryption. The site uses Matomo analytics for visitor tracking but lacks visible cookie consent mechanisms, which may impact privacy compliance. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers, which are recommended to enhance security posture. No privacy, cookie, or terms of service policies are published, and no contact or incident response information is available, indicating gaps in compliance and transparency. No vulnerabilities or suspicious activities were detected. Overall, the website presents a professional and consistent brand image with good content quality and user experience but requires improvements in privacy compliance, security best practices, and transparency to enhance trustworthiness and regulatory adherence.

Tallinn Dolls operates as a specialized e-commerce retailer focusing on fashion apparel and accessories for women, men, and children. The website offers a variety of collections including pre-order and immediate purchase options, targeting consumers interested in curated fashion products. The company has a stable market presence with a domain registered since 2008, indicating longevity and business continuity. The site supports multilingual content in English and Estonian, enhancing accessibility for its target audience. Technically, the website leverages modern marketing and analytics tools such as Google Analytics, Facebook Pixel, Klaviyo, and Weglot for translations. It is built on the Sylius e-commerce platform, which is a modern and flexible solution. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Performance is moderate, with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and does not publish security policies or incident response contacts. No privacy or cookie policies were detected, which is a compliance gap especially under GDPR. Tracking technologies are extensively used, but without visible consent mechanisms, raising privacy concerns. Overall, Tallinn Dolls presents a credible and professional e-commerce presence with solid technical foundations but requires improvements in privacy compliance and security transparency to enhance trust and regulatory adherence.

L

Leibur

leibur.ee

0

Leibur is a well-established Estonian bakery company with a rich history dating back to 1762. The company operates primarily in the retail sector, offering a variety of bread and bakery products. The website reflects a medium-sized business with a consistent brand presence and a focus on product promotion, company history, and sustainability. The parent company is Lantmännen, indicating a solid corporate backing. Technically, the website uses modern frameworks such as Bootstrap and integrates multiple marketing and analytics tools including Google Tag Manager, Matomo, HubSpot, and Microsoft Application Insights. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks some recommended security headers and explicit security policies. Privacy compliance is basic, with a cookie banner present but no clear privacy policy or terms of service pages detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is functional and professional but could improve in privacy transparency and security best practices.

Z

Z6·尊龙凯时集团有限公司

edge-asia.com

0

Z6·尊龙凯时集团有限公司 is a large, established Chinese conglomerate with diversified interests in retail, hospitality, real estate, and investment sectors. Founded in 1999 and headquartered in Nantong, Jiangsu, the company operates numerous subsidiaries and has a significant employee base and asset portfolio. The website presents detailed business information and sector descriptions, targeting business partners and customers primarily in China. Technically, the website uses modern JavaScript libraries and CSS frameworks, is mobile optimized, and includes a contact form with captcha for user interaction. However, the absence of WHOIS registration data and lack of privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate with HTTPS usage but lacks explicit security headers and has an external iframe to an IP address that may pose risks. Overall, the site is professional but would benefit from enhanced security and compliance measures.

D

Diivaniparadiis

paradiis.ee

0

Diivaniparadiis is a well-established Estonian furniture retailer operating since 1998, offering a wide range of home and office furniture through both online and physical stores. The website reflects a mature e-commerce platform with clear navigation, product listings, and customer account management features. The business targets Estonian consumers seeking quality furniture and home decor products. The domain age and WHOIS data align with the company's market presence, reinforcing its legitimacy. Technically, the website employs modern JavaScript libraries such as Swiper.js for sliders, Fancybox for image galleries, and integrates marketing tools like Google Tag Manager and Facebook Pixel for analytics and advertising. The presence of CSRF tokens and HTTPS indicates a reasonable security posture, although some security headers could be improved. Mobile optimization and SEO practices are adequately implemented, providing a good user experience across devices. Security-wise, the site uses HTTPS with a good SSL configuration and includes CSRF protection in forms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security transparency and compliance. Privacy compliance is basic but includes a cookie consent banner and a privacy policy page in Estonian. Overall, Diivaniparadiis presents a trustworthy and professional online presence with solid business credibility and technical implementation. Strategic enhancements in security policies, accessibility, and legal documentation would further strengthen its compliance and user trust.

R

ROI

roi.ee

0

ROI is an established Estonian company specializing in corporate gifts, promotional items, and branded apparel, serving businesses seeking quality branded products since 1992. The website is built on a modern Angular framework, incorporating standard web fonts and styles, and integrates Google Tag Manager and CookieHub for analytics and cookie consent management. The technical infrastructure is solid with HTTPS enforced and a cookie consent mechanism that supports GDPR compliance. However, explicit contact information and detailed security policies are not present on the site, which could be improved to enhance trust and compliance. The domain registration data is consistent and indicates a legitimate and stable business presence. Overall, the website demonstrates good digital maturity and a moderate security posture, with room for enhancements in security headers and incident response transparency.

O

Oy Lunden Ab Jalostaja

jalostaja.fi

0

Oy Lunden Ab Jalostaja is a well-established Finnish food manufacturing and retail company specializing in ready meals, soups, salads, and vegan products. The company emphasizes convenience for everyday consumers and sustainability in packaging. Their website reflects a strong brand presence with consistent messaging and active engagement in para-sports sponsorship, enhancing their community involvement and brand image. Technically, the website is built on WordPress with modern SEO and tracking tools such as Yoast SEO and Google Tag Manager, ensuring good digital maturity and performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, user-friendly, and compliant with GDPR requirements, supporting a high trust level for visitors and customers.

E

Eton

etonshirts.com

0

Eton is a well-established Swedish brand specializing in premium men's shirts and accessories, with a history dating back to 1928. The company operates a sophisticated e-commerce platform targeting men seeking quality and style in shirts and related apparel. Their market position is strong within the premium retail segment, supported by a comprehensive product range including custom-made options and a membership club offering exclusive benefits. Technically, the website is built on modern frameworks such as Next.js and React, leveraging Contentful CMS and integrating analytics tools like Google Tag Manager and Voyado. The site demonstrates excellent design quality, mobile optimization, and accessibility, providing a seamless user experience. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although the absence of explicit security policy or incident response information is noted. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, the WHOIS data for the domain is missing, which raises concerns about domain registration transparency despite the site's legitimacy and professional appearance. Overall, the website is secure, professional, and user-friendly but would benefit from improved domain registration transparency and explicit security disclosures.

D

Dispak

dispak.ee

0

Dispak is an Estonian retail business specializing in the sale of paper and fabric bags, primarily targeting customers seeking packaging solutions for gifts and corporate gifts. The company claims over two decades of experience and offers custom logo printing services with a minimum order quantity. The website is primarily in Estonian and serves the local market with a product-focused approach. Technically, the site uses jQuery and jQuery UI libraries along with Google Analytics and Tag Manager for tracking. The hosting and domain registration are consistent with an Estonian business identity. However, the website lacks explicit privacy, cookie, and terms of service policies, which impacts its compliance posture. Security headers and advanced security practices are not evident, and no incident response or vulnerability disclosure information is provided. Overall, the site is functional with moderate technical implementation but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

Kinkston is an Estonian company specializing in corporate and promotional gifts, targeting businesses seeking branding and advertising products. The website presents a professional and consistent brand image with a focus on the Estonian market. The technical infrastructure is modern, leveraging Angular framework and standard marketing tools such as Google Tag Manager and CookieHub for cookie consent management. The domain is well-established since 2010, indicating a stable business presence. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. Privacy compliance is good, with GDPR-aligned cookie consent but lacks a dedicated privacy policy page on the domain itself. Overall, the website is functional, professional, and trustworthy with moderate risk.

D

Decoland

decoland.cz

0

Decoland is a Czech Republic based luxury and design furniture retailer and interior design studio. The company offers a curated gallery of design furniture and accessories, targeting consumers seeking high-end interior solutions. The website is built on a modern React and Next.js framework, incorporating cookie consent and Google Tag Manager for analytics and privacy compliance. The site is well-structured, mobile-optimized, and provides comprehensive privacy and cookie policies in Czech language. Security posture is good with HTTPS and security headers, though explicit security policies and incident response contacts are absent. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not indicate malicious intent. Overall, Decoland presents a professional and trustworthy online presence in the luxury furniture retail sector.

R

Rescoval

rescoval.ee

0

Rescoval is an Estonian company specializing in advertising installation services, including banner and sticker advertising, seasonal sales areas, and rental of advertising trailers across Estonia. Established in 2010, the company targets retail chains, supermarkets, and shopping centers, offering professional and rapid campaign installations. The website reflects a mature local business with consistent branding and clear service offerings. Technically, the site is built on WordPress with common plugins for SEO, forms, and sliders, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in security headers and incident response policies. Overall, the domain registration data aligns well with the business claims, enhancing trustworthiness.

R

Route One

routeone.co.uk

0

Route One is a specialized retailer focusing on skateboarding, snowboarding, and streetwear apparel and accessories, targeting youth and young adults in Europe. The company operates a professional e-commerce platform built on Shopify, offering a broad product range and a user-friendly shopping experience. The website demonstrates good digital maturity with modern technologies, mobile optimization, and integrated marketing tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the business appears legitimate and professionally managed with a solid market position in its niche.

S

Saarioinen Oy

saarioinen.fi

0

Saarioinen Oy is a well-established Finnish food manufacturer specializing in popular ready meals and traditional Finnish foods. The company engages consumers through its website by offering product information, recipes, and a community platform. The website reflects a strong brand presence with consistent branding and multiple trust certifications such as Avainlippu and Sydänmerkki. The target audience primarily consists of Finnish consumers interested in convenient and traditional food products. Technically, the website is built on a modern stack including Vue.js and Episerver CMS, with integrations for Google Tag Manager and Cookiebot for analytics and consent management. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the company's market position as a leading Finnish food brand.

S

Sisustuskoda OÜ

sisustuskoda.ee

0

Sisustuskoda OÜ is a small Estonian company specializing in custom-made furniture, particularly kitchen furniture for residential customers. Established in 2014, the company positions itself as a provider of quality, durable, and design-focused furniture solutions. Their website reflects a professional and consistent brand image, targeting consumers seeking bespoke interior furnishings. The business operates primarily in the retail sector with a local market focus in Estonia. Technically, the website is built on WordPress using the Astra theme and WooCommerce for e-commerce capabilities. It integrates modern tools such as Google Tag Manager and Google reCAPTCHA to enhance functionality and security. The site is mobile-optimized and demonstrates good SEO practices through structured data and meta tags. Hosting appears to be managed by Zone Media OÜ, consistent with the domain's Estonian registration. From a security perspective, the site uses HTTPS and includes reCAPTCHA to protect forms, but lacks explicit security headers and published security or incident response policies. Privacy and cookie policies are absent, posing compliance risks under GDPR. No vulnerability disclosure or security contact information is provided, which could impact trust and incident handling readiness. Overall, the website is functional and credible for its business purpose but would benefit from enhanced privacy compliance, improved security headers, and transparent security policies to strengthen its security posture and regulatory adherence.

S

Sportland

sportland.com

0

Sportland is a well-established retail company specializing in sporting goods and apparel, operating primarily in the Baltic states and Finland with a strong e-commerce presence offering worldwide delivery. The company has a significant market position as the largest sporting goods retailer in the Baltics, supported by over 50 physical stores and a modern online platform. The website leverages modern technologies including React-based PWA and Magento PWA Studio, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements can be made in DNSSEC and security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site reflects a professional and trustworthy business with good technical infrastructure.

B

Büroomaailm

byroomaailm.ee

0

Büroomaailm is an established Estonian e-commerce retailer specializing in office supplies, office technology, furniture, and school and art supplies. The website targets both retail and wholesale customers within Estonia, offering a broad product range and a professional online shopping experience. The platform is built on Magento 2 with various extensions enhancing functionality, including wishlist management and advanced search features. The site employs modern JavaScript libraries and tracking tools such as Hotjar, Microsoft Clarity, and Google Tag Manager to monitor user behavior and optimize marketing efforts. Security-wise, the site enforces HTTPS with a good SSL configuration but lacks visible security headers and published security policies. Privacy compliance is weak, with no explicit privacy or cookie policies detected, which could pose regulatory risks. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

K

Kaubamaja

kaubamaja.ee

0

Kaubamaja is a large Estonian retail company operating a professional e-commerce platform offering a wide range of products including beauty, fashion, home, children's goods, and gourmet items. The website is well-branded and targets consumers looking for convenient and safe online shopping experiences. The technical infrastructure leverages modern frontend technologies such as Vue.js and integrates third-party services like Klevu for search and Cookiebot for cookie consent management, indicating a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing explicit security policies and enhancing security headers. Privacy compliance is moderate due to the absence of a clearly accessible privacy policy and terms of service. Overall, the website is trustworthy and professionally maintained, serving a large retail market in Estonia.

M

Miterassa

miterassa.ee

0

Miterassa operates a professional e-commerce platform specializing in consumer electronics, including audio, video, and smart devices, targeting customers primarily in Estonia. The website presents a well-structured catalog with clear navigation and a consistent brand presence. The business model focuses on retail sales supported by extended warranty and installation services, positioning Miterassa as a reputable regional player in the electronics retail market. Technically, the website is built on Magento 2, leveraging modern JavaScript frameworks such as RequireJS and jQuery, and integrates multiple analytics and marketing tools including Google Tag Manager, Facebook Pixel, Hotjar, and Cookiebot for consent management. The site is mobile-optimized and employs HTTPS with appropriate security headers, indicating a mature digital infrastructure. From a security perspective, the site demonstrates good practices such as enforcing HTTPS, implementing cookie consent, and using security headers. However, it lacks publicly available security policies and incident response contacts, which are recommended for enhanced transparency and compliance. No critical vulnerabilities or suspicious indicators were detected. Overall, the website is professional, secure, and compliant with privacy regulations, reflecting a trustworthy business. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility features, and maintaining regular audits of third-party scripts to sustain security posture.

H

Heidi Park Kondiiter

kondiiter.ee

0

Heidi Park Kondiiter is a small Estonian bakery business operating since 2010, specializing in retail and custom cakes including gluten-free options. The website is built on WordPress with WooCommerce, providing an e-commerce platform and rich content including product descriptions and Instagram integration. The business has announced permanent closure effective June 13, 2025. Technically, the site uses modern web technologies and maintains good SSL security, but lacks explicit privacy and security policies. Contact information is clearly presented, enhancing business credibility. Security posture is adequate but could be improved with additional headers and published policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

S

SIROWA Group

sirowa.lv

0

SIROWA Group operates as a wholesale distributor specializing in cosmetics and beauty care products, positioning itself as an experienced regional player in this retail sector. The website reflects a medium-sized business with a focus on wholesale distribution of well-known brands in the health and beauty industry. The digital infrastructure is based on WordPress, enhanced with modern tools such as Brizy Builder and FontAwesome, and utilizes Cloudflare for DNS services. The site demonstrates good design quality, mobile responsiveness, and basic SEO optimization, supporting a positive user experience. Security posture is adequate with HTTPS enabled and domain transfer protections in place, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no accessible privacy or terms of service pages. Overall, the domain registration data supports legitimacy and transparency, with a long-established domain and no privacy protection masking registrant details.

A

Anvol

anvol.eu

0

Anvol is a well-established international company specializing in the distribution and retail of toys, games, and trending products primarily in the Baltic Sea region and neighboring markets. With over 30 years of experience, it operates a large network of clients and retail stores branded as XS Toys. The company emphasizes quality partnerships and sustainable business practices. Technically, the website is built on WordPress with modern libraries and supports multiple languages, indicating a mature digital presence. Security posture is good with HTTPS and no visible vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the business appears credible and professional, but should improve privacy and security transparency to enhance trust and compliance.

R

Reiven Solutions

kannukas.ee

0

Kännukas is an Estonian-based retailer specializing in mobile phones and related accessories, operating both an online e-commerce platform and a physical sales salon in Tallinn. The company offers a wide range of products including popular brands such as Google Pixel, HTC, and Cat phones, along with protective accessories like PanzerGlass and branded cases. Their market position is that of a local, trusted retailer with a substantial product inventory and a focus on consumer electronics. Technically, the website is built on the Click-and-Run CMS platform and leverages modern JavaScript libraries such as jQuery, Select2, FlexSlider, FancyBox, and Klevu Search for enhanced user experience and search capabilities. The site is mobile-optimized and demonstrates good SEO practices with proper meta tags and structured navigation. Security-wise, the website enforces HTTPS and implements cookie consent mechanisms, but lacks a formal published security policy and incident response contacts. The WHOIS data confirms the legitimacy of the domain registration, matching the company information and location. Overall, the website presents a professional and trustworthy front with room for improvement in formal security documentation and advanced security headers.

S

Sajos & Portress

sajosportress.lv

0

Sajos & Portress is a Latvian retail business specializing in garage doors, door automation, and related home access products, prominently featuring Hormann brand promotions. The company targets local customers interested in home improvement and automotive accessories, leveraging event participation such as the Auto 2025 exhibition to enhance market presence. The website is built on the Mozello CMS platform, hosted via Amazon CloudFront CDN, and employs common JavaScript libraries including jQuery and Fancybox. It features a cookie consent mechanism and Google Analytics for user tracking, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and no visible exposed sensitive data; however, the absence of security headers and a formal privacy policy page are notable gaps. The lack of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness, which impacts overall business credibility. Strategic improvements in compliance documentation, security headers, and domain registration transparency are recommended to strengthen trust and security.

4

4Room

4room.ee

0

4Room is an Estonian manufacturer and retailer specializing in tailor-made design lighting products such as pendant lamps, ceiling lamps, and fabric shades. The company targets customers seeking high-quality, design-oriented lighting solutions, positioning itself as a niche player with a focus on Estonian design aesthetics. The website is professionally designed with good mobile optimization and clear navigation, supporting the business model of online retail and custom manufacturing. Technically, the site uses a ShopRoller CMS platform with common JavaScript libraries and tracking tools like Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy and terms of service present, but no cookie consent mechanism is implemented. Overall, the website is trustworthy and functional, though improvements in security and privacy transparency are recommended.

M

Maxima

maxima.ee

0

Maxima is a large retail grocery chain operating in Estonia, offering over 2000 promotional deals weekly to its customers. The website is professionally designed with good content quality and clear navigation, targeting retail consumers seeking affordable daily groceries. Technically, the site employs modern web technologies including JavaScript, CSS, Google Tag Manager, and Cookiebot for cookie consent management. The site is served over HTTPS with no detected WAF or blocking mechanisms, indicating reliable hosting and security infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks visible security policies and incident response contacts. Privacy compliance is partially addressed via Cookiebot consent but lacks a publicly accessible privacy policy or terms of service pages. Overall, the site demonstrates moderate to good digital maturity with room for improvement in privacy transparency and security documentation.

B

Baltika Group

baltikagroup.com

0

Baltika Group is a well-established Estonian fashion company with a history dating back to 1928. The company manages the Ivo Nikkolo brand across multiple markets, focusing on premium women's fashion with original designs and high-quality European fabrics. The website reflects a professional retail business with clear branding and consistent messaging. Technically, the site is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks several important security headers and a cookie consent mechanism, which are recommended for improved compliance and protection. The WHOIS data is incomplete, lacking registrar and registrant details, which slightly reduces trust but does not negate the legitimacy of the business as presented on the site. Overall, the site is functional, professional, and credible but could benefit from enhanced security and privacy compliance measures.

A

AS Orient Office

kontorikaubad.ee

0

AS Orient Office operates a professional e-commerce website offering a broad range of office supplies, paper goods, household items, food products, and electronics primarily targeting Estonian businesses and consumers. The company has an established market presence since 2011 and provides a comprehensive product catalog with clear navigation and a consistent brand presentation. The website is built on Drupal CMS and leverages common web technologies including jQuery, Bootstrap, and Google Analytics for tracking and marketing purposes. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, the absence of security headers and incident response contacts indicates room for improvement. Privacy compliance is weak due to missing privacy and cookie policies, which poses a compliance risk under GDPR. Overall, the website is trustworthy and credible but would benefit from enhanced privacy and security practices to strengthen user trust and regulatory compliance.

Solaris is a well-established cultural and commercial center located in the heart of Tallinn, Estonia. Founded in 2010, it offers a diverse range of services including retail shops, restaurants, entertainment venues, office spaces, and parking facilities. The website reflects a professional and modern digital presence, targeting local visitors and shoppers with relevant content and event information. The business maintains a solid market position as a key destination for shopping and cultural activities in Tallinn.

S

Softrend

softrend.ee

0

Softrend is an established Estonian furniture company specializing in sofas, beds, and home accessories, with a strong emphasis on sustainability and quality craftsmanship. The company operates a professional e-commerce website built on WordPress, featuring modern technologies such as Google Tag Manager, reCAPTCHA, and performance optimizations via WP Rocket. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security posture is strong with HTTPS and bot protection, but could be improved with additional security headers and a vulnerability disclosure policy. Overall, the domain registration data supports the legitimacy of the business, and the website reflects a credible and professional retail operation.

W

WHSmith PLC

whsmithcareers.co.uk

0

WHSmith PLC is a well-established global retailer with a rich history dating back to 1792. The company operates over 1,700 stores across more than 30 countries, encompassing a diverse portfolio of retail and online brands including WHSmith Travel, WHSmith High Street, funkypigeon.com, and cultpens.com. The careers website serves as a comprehensive portal for job seekers, highlighting the company's growth, culture, and opportunities across various business areas. Technically, the website employs modern web technologies such as Google Tag Manager, Vimeo for video content, and a chatbot powered by Chatter Communications, ensuring a user-friendly and interactive experience. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and professional design. Security posture is strong with HTTPS enforced, secure forms, and cookie consent mechanisms, although there is room for improvement by adding explicit security policies and incident response contacts. Overall, the domain registration and WHOIS data align well with the company's legitimacy and long-standing market presence, supporting a high trustworthiness rating.

O

Online store Bauhof

bauhof.ee

0

Bauhof is a large Estonian retail company specializing in construction, garden, tools, and interior finishing products. The company operates an e-commerce platform built on Vue Storefront 2, offering customers fast pickup and delivery options, flexible payment terms, and a customer-friendly return policy. The website demonstrates a good level of digital maturity with modern frameworks and a responsive design optimized for mobile users. Security posture is solid with HTTPS enforced and cookie consent managed via Cookiebot, though explicit security policies and incident response contacts are absent. Overall, the site is professional and trustworthy, with room for improvement in privacy compliance and security transparency.

E

Europanel

europanel.com

0

Europanel is a collaborative international consumer panel business that integrates multiple leading household purchase panels worldwide to provide deep shopper insights and support brand growth strategies. The website reflects a mature, well-established business with a strong partner ecosystem including Kantar, YouGov, Ipsos, and others. Technically, the site is built on WordPress with modern web technologies and is hosted on Azure DNS infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS and reCaptcha protections, but lacks advanced security headers and explicit privacy and cookie policies. Overall, the domain registration data supports the legitimacy and maturity of the business. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving security headers to strengthen trust and compliance.

Hubo is a leading Belgian retailer specializing in DIY and home improvement products, operating over 150 physical stores alongside a comprehensive e-commerce platform. The website is well-structured, targeting DIY consumers in Belgium with a clear business model focused on retail and online sales. Technically, the site leverages Adobe Experience Manager CMS, integrates modern marketing and analytics tools such as Google Tag Manager and Bazaarvoice, and implements a robust cookie consent mechanism aligned with GDPR requirements. Security posture is strong with HTTPS enforced and consent-based tracking, though explicit security headers could be further verified and enhanced. The WHOIS data is privacy protected, which is common for commercial entities, and no suspicious indicators were found in the website content. Overall, the site demonstrates good digital maturity, professional design, and compliance with privacy standards.

D

Duvel

duvel.com

0

Duvel is a well-established Belgian beer brand with a rich history dating back to 1871. The company operates a professional website that showcases its premium beer products, brand heritage, and visitor experiences. The site targets beer enthusiasts primarily in Belgium and internationally, offering detailed product information, awards, and an e-commerce platform. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and Flowbox for social media integration, with good mobile optimization and accessibility features. Security-wise, the site enforces HTTPS, includes an age verification modal to comply with legal drinking age requirements, and implements cookie consent mechanisms aligned with GDPR. However, no explicit security policy or incident response information is published, and WHOIS data for the domain is unavailable, which slightly impacts trust analysis. Overall, the website is professional, secure, and compliant, supporting Duvel's market position as a premium beer brand.

M

Mikroskop-shop.cz

mikroskop-shop.cz

0

Mikroskop-shop.cz is a specialized Czech e-commerce retailer focused on microscopes and related accessories, serving schools, professionals, and hobbyists. The website offers a broad product range from reputable manufacturers, expert advice, and customer support, positioning itself as a trusted niche player with over 17 years of experience. Technically, the site uses a legacy CMS (SUPERCART 2.0.7) with older JavaScript libraries but integrates modern analytics and tracking tools. Security posture is generally good with HTTPS and cookie consent mechanisms, though some improvements like updated libraries and security headers are recommended. The absence of WHOIS data limits domain trust verification but the website content and business information appear legitimate and professional. Overall, the site provides a solid user experience with clear navigation, comprehensive product information, and compliance with privacy regulations.

F

Footshop a.s.

footshop.dk

0

Footshop a.s. operates a professional e-commerce platform specializing in sneakers, clothing, and accessories, targeting sneaker enthusiasts and fashion consumers primarily in Denmark and Europe. The company positions itself as a leading sneaker retailer with a broad product range from popular brands and offers services such as free returns and a loyalty program. The website demonstrates a mature digital infrastructure using modern technologies including Google Tag Manager, Cookiebot for consent management, and Typekit fonts, built likely on the PrestaShop CMS platform. The site is well-optimized for SEO and mobile devices, providing a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response information are not publicly disclosed. The absence of WHOIS data is typical for .dk domains and does not detract from the site's legitimacy. Overall, the website reflects a trustworthy and professional retail business with good privacy compliance and moderate user tracking.