Retail security reports

Z

Zone Media OÜ

babytrio.ee

55

Babytrio.ee is an established Estonian e-commerce retailer specializing in baby products such as strollers, car seats, nursery furniture, feeding accessories, and toys. The website is built on the Magento 2 platform, leveraging modern frontend technologies including RequireJS, jQuery, and Knockout.js, and integrates marketing and analytics tools like Google Analytics, Hotjar, and Facebook Pixel. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and reCAPTCHA implemented, though some security headers are missing and privacy policy documentation is absent. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness.

S

SIA LASHPROVOCATOR

lashprovocator.lv

39

Lashprovocator is a Latvian small retail company specializing in premium eyelash extension materials, including eyelashes, preparāti (solutions), tools, and starter kits. The website targets professionals and consumers interested in eyelash extensions, positioning itself as a niche player in the Latvian beauty retail market. The business model is e-commerce focused, offering a broad product range with clear contact information and basic privacy and cookie policies, indicating a professional approach to customer engagement and compliance. Technically, the website employs common web technologies such as jQuery, PhotoSwipe, and Fontello icons, alongside marketing and analytics tools like Facebook Pixel and Google Analytics. The site is served over HTTPS with asynchronous loading of scripts, contributing to moderate performance and basic mobile optimization. However, there is room for improvement in accessibility and security headers implementation to enhance overall security posture. From a security perspective, the website demonstrates a good baseline with HTTPS and no visible exposed sensitive data. However, the absence of security headers and explicit security or incident response policies suggests moderate maturity in security practices. The use of third-party tracking pixels indicates moderate user tracking, balanced by the presence of cookie consent mechanisms and privacy policies, aligning with GDPR requirements. Overall, the website is professionally designed and functional, with moderate security and privacy compliance. The lack of WHOIS data limits full domain legitimacy assessment, but available information supports a legitimate small business operation. Strategic improvements in security headers, incident response readiness, and mobile accessibility would strengthen the site's security posture and user trust.

P

PromoTron Solutions a.s.

approvedpromo.eu

51

ApprovedPromo.eu is an e-commerce platform specializing in premium promotional items and customizable merchandise targeted primarily at businesses seeking branded gifts and corporate giveaways. The website is powered by the TronShop E-Commerce Platform and integrates modern web technologies such as jQuery, Bootstrap, and Stripe for payment processing. The site offers a large catalog of over 50,000 promotional products and provides features like online logo visualization to enhance customer experience. From a technical perspective, the website demonstrates moderate performance with good mobile optimization and SEO practices. However, there is room for improvement in accessibility and security headers implementation. The presence of cookie consent mechanisms and privacy policies indicates a commitment to GDPR compliance, although explicit security and incident response policies are not found. Security posture is adequate with HTTPS usage implied, but the absence of visible security headers and detailed security policies suggests potential areas for enhancement. The WHOIS data is unavailable due to EURid privacy restrictions, which is common for EU domains, but the website's professional presentation and contact information support its legitimacy. Overall, the site is safe, trustworthy, and suitable for its business purpose.

L

Levaor

levaor.com

35

Levaor is a small Latvian-based jewelry retailer specializing in handcrafted and unique jewelry pieces including wedding rings, gold and silver jewelry with gemstones, and gifts. The website is built on WordPress with WooCommerce, utilizing popular plugins such as WPBakery Page Builder and Revolution Slider, indicating a moderate level of digital maturity. The site is well designed with good user experience and mobile optimization, targeting consumers interested in fine jewelry and gifts. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC, representing areas for improvement. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website presents a professional retail presence but should enhance compliance and security measures to reduce risk and improve trust.

A

AguFinder

agufinder.com

43

AguFinder is a Latvian e-commerce retailer specializing in children's furniture and soft toys, targeting parents and families within Latvia. The website offers adjustable height children's tables and chairs, along with plush toys, and provides delivery options including free shipping to Latvian Post offices. The business appears to be a small local player established since 2017, with consistent branding and clear contact information. Technically, the site uses standard web technologies including jQuery, Font Awesome, Google reCAPTCHA, and Google Analytics, with a custom or unknown CMS. The site is mobile optimized and provides a user-friendly experience with clear navigation. Security posture is moderate; HTTPS is enabled and reCAPTCHA is used, but DNSSEC is not enabled, security headers are missing, and an outdated jQuery version is used, which could pose vulnerabilities. Privacy compliance is basic with a cookie consent banner and privacy policy present, but no explicit GDPR compliance statements or security policies are found. Overall, the site is safe for general audiences and shows moderate trustworthiness.

U

UAB "Interneto vizija" (registrar)

jusuprekes.lt

56

JusuPrekes.lt is a Lithuanian e-commerce platform specializing in retail sales of furniture, home and garden products, automotive accessories, and a broad range of consumer goods. The website targets both individual consumers and businesses within Lithuania, offering a comprehensive catalog sourced from multiple international markets including Germany, the USA, the UK, and Europe. The business model is primarily online retail with customer support and delivery services. The site is relatively new, with domain registration in November 2024, and is operated under a Lithuanian registrar, indicating local market focus and legitimacy. Technically, the website uses modern web technologies including JavaScript, jQuery, and Google Tag Manager for analytics and marketing. It is hosted behind Cloudflare DNS services, ensuring reliable performance and security. The platform is built on EcomCart.eu, a specialized e-commerce CMS, providing structured product categories and responsive design. Mobile optimization and SEO practices are adequately implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data is transparent and consistent with the business profile, enhancing trustworthiness. Overall, JusuPrekes.lt presents as a professional and legitimate e-commerce site with good content quality and technical implementation. Security posture is adequate but could be improved with additional headers and published policies. Privacy compliance is well addressed through cookie consent and privacy policy presence. The site is safe for general audiences with no adult content detected.

L

AN Riepas - Riepu tirdzniecība

lp.autoriepas.lv

44

The website autoriepas.lv represents a Latvian tire retail and service business offering a wide range of new tires for various vehicles, including wholesale and retail sales. They also provide professional tire mounting services and advertise steel wheel repair and painting through a linked domain. The site targets vehicle owners in Latvia seeking tire products and related services. Technically, the site is built on the Bitrix CMS platform and integrates Bitrix24 CRM and live chat for customer support. It uses Google Analytics and Facebook Pixel for user tracking. Security posture is moderate with HTTPS enabled but lacks visible security headers and privacy/cookie policies, which are important for compliance and trust. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the site is professional and functional but would benefit from enhanced privacy compliance and security best practices.

P

Postcard | Hēlija baloni | Kompozīcijas | Balonu piegāde

postcard.lv

58

Postcard.lv is an e-commerce website specializing in party supplies, primarily helium balloons and balloon compositions, targeting customers in Latvia. The site offers a wide assortment of balloon products with competitive pricing and fast delivery services, positioning itself as a leading balloon retailer in Latvia. The website is professionally designed with good navigation and mobile responsiveness, supporting Latvian and Russian languages to cater to local audiences. Technically, the site uses common web technologies such as jQuery, Google Tag Manager, Google Analytics, Facebook Pixel, and OpenCart CMS, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. WHOIS data could not be retrieved due to query limits, limiting domain registration trust verification. Overall, the site appears legitimate and functional with room for enhanced privacy and security compliance.

EOLTAS is a well-established automotive parts retailer and distributor operating primarily in Latvia and the Baltic region since 1993. The company offers a wide range of engine and chassis parts for light and commercial vehicles sourced from Europe, Japan, and the USA. Their market position is strong, supported by authorized representation of over 80 manufacturers and adherence to ISO 9001 and TS16949 quality standards. The website serves both retail and B2B customers, providing an e-commerce platform with extensive product listings and customer information.

L

LEIFHEIT CZ a. s.

leifheit.cz

50

LEIFHEIT CZ a. s. operates as the exclusive distributor of the German Leifheit and Soehnle brands in the Czech and Slovak markets, with a 30-year presence. The company focuses on household products including cleaning, kitchen, and health-related items. The website reflects a medium-sized retail distributor with a professional and consistent brand presentation. Technically, the site uses modern frontend technologies such as React and Bootstrap, providing a good user experience and mobile optimization. However, the absence of privacy and cookie policies, security headers, and WHOIS data limits the overall security and compliance posture. Contact information is clearly provided, and social media channels are actively linked, enhancing trust and customer engagement.

P

Programia s.r.o.

astratex.cz

69

Astratex.cz is an established e-commerce retailer specializing in women's and men's lingerie and swimwear, targeting a broad B2C audience primarily in the Czech Republic and surrounding countries. The business operates multiple country-specific domains, indicating a regional market presence and a mature business model focused on online retail with services such as fast delivery and free product exchange. The website content is professionally presented with good design quality and clear navigation, supporting a positive user experience. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, Cookiebot for consent management, and Google Fonts. It uses HTTPS with a manifest for progressive web app capabilities, indicating a moderate level of digital maturity. Performance is moderate with good mobile optimization but lacks some advanced accessibility features and explicit security headers. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data suggests privacy protection, which is common and justified for this type of business. Overall, the security posture is good but could be improved with additional headers and published policies. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include publishing clear privacy and security policies, adding security headers, and providing explicit contact information for security incidents to enhance trust and compliance.

V

Vosíme.cz

vosime.cz

60

Vosíme.cz is a regional Czech online food delivery service specializing in pizza and related food items, operating since 2015 with 32 branches across Moravia. The website is well designed using modern technologies such as Vue.js and Cloudflare CDN, providing a fast and mobile-optimized user experience. The business targets general consumers looking for quick pizza delivery or pickup options. Security posture is solid with HTTPS and Cloudflare protection, though some improvements are needed in privacy compliance and incident response transparency. Overall, the website is professional and trustworthy with moderate tracking and social media integration.

ABC COLOR s.r.o. is a Czech Republic-based company specializing in the retail and wholesale of paints, varnishes, and a broad range of building materials. Founded in 2005, the company has expanded its product offerings and sales area over the years, serving both professional and retail customers. The website reflects a regional business with a focus on construction materials and related services, supported by partnerships with well-known suppliers. Technically, the website uses older JavaScript libraries and a custom CMS, with moderate performance and basic mobile optimization. Security posture is average, with no visible HTTPS enforcement or security headers in the provided data, and outdated libraries that may pose risks. Privacy compliance is minimal, lacking cookie consent mechanisms and explicit privacy policies. Overall, the website is functional but would benefit from modernization and enhanced security and privacy practices.

J

JIRNO

jirno.eu

58

JIRNO is a Czech-based e-commerce retailer specializing in electrical components, industrial equipment, and smart home technology products. The website offers a broad catalog including batteries, lighting, cables, switches, and computer hardware, targeting both business and individual customers primarily in the Czech Republic and neighboring countries. The business model focuses on online retail sales complemented by servicing offerings. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages and currencies.

M

mojemobilka.cz

mojemobilka.cz

57

mojemobilka.cz is a Czech Republic based e-commerce retailer specializing in mobile phones, cases, tempered glass screen protectors, and various mobile accessories. The company operates both online and through three physical stores, offering a wide range of products with over 8,000 items in stock. Their business model focuses on affordable mobile accessories targeting consumers seeking quality and variety. The website is built on WordPress with WooCommerce, leveraging standard e-commerce technologies and integrations such as GoPay for payment processing. The site demonstrates good technical maturity with HTTPS, security headers, and structured data for SEO. However, it lacks visible privacy and cookie policies, which impacts compliance and trust. No WHOIS data is available, which limits domain registration transparency and slightly reduces trustworthiness. Overall, the site is professional and functional, serving a medium-sized retail business in the Czech market.

M

MADMONQ

madmonq.gg

63

MADMONQ is a specialized e-commerce business focused on health and performance supplements tailored for gamers. The company positions itself as a niche leader offering jitter-free energy supplements designed to enhance gaming performance. Their digital presence is built on a modern WordPress platform with WooCommerce, integrating multiple marketing and analytics tools such as Google Tag Manager, TikTok Pixel, and Cookiebot for consent management. The website demonstrates excellent design quality, mobile responsiveness, and SEO optimization, targeting a global gaming audience. Security posture is strong with HTTPS enforced and security headers likely in place, though explicit privacy and terms of service documents are missing, which could impact compliance and trust. Overall, MADMONQ presents a professional and trustworthy online retail platform with room for improvement in privacy transparency and incident response readiness.

F

Ferda - cukrářská výroba

ferdacukrarskavyroba.cz

58

Ferda - cukrářská výroba is a small artisanal confectionery business based in Třinec, Czech Republic, specializing in custom cakes, pastries, bread, and edible paper printing. Founded in 2018 by Šárka Krausová, the company emphasizes quality handmade products using traditional ingredients and methods. The website reflects a local niche business with a focus on customer orders and reservations, serving a growing customer base with limited production capacity. Technically, the website is built on the Webnode CMS platform, hosted with Amazon Cloudfront CDN, and uses modern web technologies including HTTPS and JavaScript. The site is mobile-optimized and provides clear navigation and business information. Security posture is moderate with HTTPS enabled and a cookie consent mechanism in place, but lacks advanced security headers and formal privacy or security policies. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and contact details appear legitimate. Overall, the website is functional and professional for a small local business but could improve in security and privacy compliance.

The website shop.rukahore.sk is an e-commerce platform specializing in the sale of music CDs, vinyl records, and merchandise primarily targeting Czech and Slovak music fans, as well as international customers interested in music-related products. The site features a well-organized product catalog with extensive genre and product type filters, supporting a broad range of music styles and merchandise categories. The business appears to be a medium-sized retail operation based in Slovakia, with a strong social media presence on Facebook, YouTube, and Instagram, indicating active engagement with its audience. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, Facebook Pixel, Hotjar, and Cookiebot for analytics and consent management. Hosting and content delivery are supported by DigitalOcean Spaces CDN, contributing to moderate performance and good mobile optimization. The site uses HTTPS, ensuring secure communications, but lacks visible advanced security headers and explicit privacy or terms of service pages, which are important for compliance and user trust. From a security perspective, the site demonstrates basic best practices such as HTTPS and cookie consent but would benefit from enhanced security headers and clearer policies regarding privacy and incident response. No vulnerabilities or suspicious patterns were detected in the provided content. The domain registration data aligns well with the website's business claims, supporting its legitimacy. Overall, the website is professionally designed with good user experience and relevant content for its target audience. However, it should improve its privacy compliance and provide clearer contact and legal information to enhance trust and regulatory adherence.

P

Pletivo - Ploty 3nec

pletivo3nec.eu

56

Pletivo - Ploty 3nec is a Czech Republic-based small retail business specializing in fencing products including various types of fencing materials, panels, gates, posts, and accessories. The company operates both an online e-commerce platform and a physical sales warehouse, targeting consumers and businesses seeking fencing solutions. Their website is built on the Eshop-rychle.cz platform and features a well-structured catalog with product details, pricing, and stock information. The business emphasizes customer support with contact details and consultation services. Technically, the website employs modern tracking tools such as Google Tag Manager and Matomo Analytics, and it implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and secure forms, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but does not detract significantly from the overall legitimacy. The website is accessible without WAF or blocking mechanisms, and content is safe for general audiences.

S

Swissmedicus

swissmedicus.cz

49

Swissmedicus.cz is an e-commerce website specializing in the retail of herbal balms, dietary supplements, and natural health products primarily targeting the Czech market and other European countries. The website offers a range of products such as Koňská mast, Unicatum, and coconut oil under the Herbamedicus brand. The site features product listings, health-related articles, and localized delivery options, indicating a focused niche business model in the health and wellness retail sector. Technically, the website employs common web technologies including jQuery, Swiper.js for sliders, and integrates marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Heureka widgets. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO practices in place. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published privacy or terms of service documents, which are important for compliance and trust. The absence of WHOIS data limits the ability to verify domain registration legitimacy, although the site appears professional and operational. Overall, the website presents a moderate security posture with room for improvement in privacy compliance and transparency.

BULAWA – reklamní agentura s.r.o. is a Czech Republic based advertising agency established in 2006, specializing in rental of advertising spaces, graphic design, large format printing, production, installation, and sales of advertising items. The company targets local businesses and organizations seeking comprehensive advertising and printing solutions. The website is basic and static, reflecting a small-sized business with moderate market presence. Technically, the site uses simple HTML and CSS without modern CMS or frameworks, hosted likely by WEDOS, the registrar. The site lacks mobile optimization and accessibility features, and no analytics or tracking technologies are detected. Security posture is weak due to absence of HTTPS enforcement, security headers, and privacy policies, which poses risks for user data protection and compliance. Overall, the website is functional but outdated and requires modernization and security improvements to enhance trust and compliance.

R

RM Corporation s.r.o.

blackcomb.cz

58

Blackcomb.cz is a well-established Czech e-commerce retailer specializing in branded fashion, sportswear, accessories, and sporting goods including bicycles and e-bikes. Operating since 2001, it holds a strong market position in the Czech Republic with a medium-sized business model focused on consumer retail. The website demonstrates good content quality, consistent branding, and clear navigation tailored to its target audience. Technically, the site uses modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel, hosted on a proprietary platform by Scarfbot, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though it lacks some advanced security headers and explicit incident response information. The absence of WHOIS data reduces transparency and slightly impacts trustworthiness, but overall the site appears legitimate and professional. No adult or questionable content is present, making it safe for general audiences.

The website lov-myslivost.cz operates as an e-commerce platform specializing in hunting equipment, primarily featuring the RISERVA brand. The business is positioned as a niche retailer with a 15-year presence in the Czech market, targeting hunters, anglers, and nature enthusiasts. The parent company is Agro Trnava s.r.o., which is clearly referenced on the site. The site offers a well-structured product catalog and provides clear contact information, enhancing customer trust. From a technical perspective, the website employs legacy technologies such as jQuery 1.6.4 and jQuery UI 1.8.16, alongside modern tools like Google reCAPTCHA and Google Analytics. While the site is accessible and moderately optimized for performance and SEO, mobile optimization and accessibility are basic. Security best practices are partially implemented, with HTTPS enforced and reCAPTCHA used, but the absence of explicit security headers and use of outdated libraries present potential risks. Security posture is moderate; no critical vulnerabilities were detected in the content, but the lack of WHOIS data and outdated JavaScript libraries reduce trustworthiness. Privacy compliance is supported by the presence of privacy and cookie policies with GDPR considerations. Contact details are clearly provided, but no formal security or incident response policies are found on the site. Overall, the website is functional and professional for its business purpose but would benefit from technical and security improvements. The absence of WHOIS data is a notable concern for domain legitimacy. Strategic recommendations include updating libraries, implementing security headers, and enhancing mobile and accessibility features to improve user experience and security posture.

P

Podlahy Řeháček

podlahyrehacek.cz

49

Podlahy Řeháček is a small Czech Republic based retail business specializing in flooring products and services, including installation, renovation, and sales of various floor coverings. Established in 1999, the company has a solid local presence and offers professional services to both construction firms and end customers. The website reflects a mature digital presence built on WordPress with a professional design and clear navigation. Technical infrastructure includes standard modern web technologies and Google Analytics with GDPR-compliant cookie consent. Security posture is adequate with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is good with a privacy policy and cookie banner in place. Overall, the site is trustworthy and professionally maintained, supporting the business's credibility and customer engagement.

H

Honzův Les

honzuvles.cz

54

Honzův Les is a Czech-based small retail business specializing in bonsai trees and related accessories, operating primarily through an e-commerce platform powered by Shoptet. The website offers a range of bonsai products including tools, substrates, fertilizers, and workshops, targeting bonsai enthusiasts and gardeners. The business emphasizes handcrafted bonsai trees and personalized customer service. Technically, the website is built on the Shoptet CMS platform, utilizing jQuery and Swiper.js for frontend interactions, and integrates social media and Google Analytics for marketing and analytics. Security posture is solid with HTTPS enforced and CSRF protections on forms, though the absence of security headers and use of an outdated jQuery version are areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. The lack of WHOIS data limits domain trust assessment but the website content and business information appear professional and trustworthy overall.

Galerie Přerov is a retail shopping center located in Přerov, Czech Republic, operated by KAVVA Digital s.r.o. The website serves as a digital portal showcasing the shopping center's stores, restaurants, events, and services. It targets local families and shoppers, providing information on store hours, promotions, and contact details. The site is well-branded and consistent with the business's retail and hospitality focus. Technically, the website uses a modern front-end stack including Bootstrap, jQuery, and various UI libraries, with a CMS likely based on the Nette Framework. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements form validation but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration is consistent and legitimate, supporting the business's credibility.

O

osatka.cz

osatka.cz

53

Ošatka.cz is a Czech Republic-based e-commerce retailer specializing in healthy, natural, organic, and gluten-free food products, natural cosmetics, and dietary supplements. The company positions itself as a specialist in lyophilized fruit and nut creams, targeting health-conscious consumers seeking quality natural products. The website is professionally designed with clear navigation and a comprehensive product catalog, supporting a positive user experience and strong market presence in its niche. Technically, the site leverages modern web technologies including Google Tag Manager, Microsoft Clarity, and Smartsupp chat, running on the NXCMS platform with responsive design and good SEO practices. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is basic, lacking explicit privacy and cookie policies, which should be addressed to enhance trust and regulatory adherence. The absence of WHOIS data is a concern for domain transparency but does not detract significantly from the overall legitimacy based on website content and business information. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and improving accessibility features to strengthen compliance and user trust.

T

TOROLA racing s.r.o.

ktm-fm.cz

57

TOROLA racing s.r.o. operates an authorized dealership website for KTM and GASGAS motorcycles and electric bikes, targeting customers primarily in Northern Moravia, Czech Republic. The site offers a comprehensive e-commerce platform featuring new models, accessories, and rental services, supported by warranty and post-warranty servicing. The business positions itself as a premium retailer with a strong focus on customer service and product authenticity. Technically, the website employs a custom MVC UI framework with modern JavaScript and CSS, integrates Google Analytics and Tag Manager for tracking, and maintains good mobile responsiveness and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit incident response policies. The absence of WHOIS data due to privacy protection limits domain transparency but does not detract from the overall legitimacy of the business. The website is safe for general audiences, free from adult or questionable content, and demonstrates good privacy compliance aligned with GDPR requirements.

A

AUMANTI design s.r.o.

aumanti.cz

43

AUMANTI design s.r.o. operates a professional e-commerce website specializing in the custom manufacturing and sale of wedding and engagement rings, as well as gemstone jewelry. Established in 2015, the company targets customers seeking bespoke and ready-made jewelry in the Czech Republic market. The website presents a clear business model combining direct retail and custom craftsmanship, supported by a consistent brand presence and social media integration. Technically, the site is built on WordPress with WooCommerce, leveraging common plugins and libraries to provide a functional and user-friendly shopping experience. The site is mobile optimized and includes SEO best practices such as structured data and meta tags. Security posture is solid with HTTPS enforced and spam protection via Google reCAPTCHA, though there is room for improvement in security headers and formal security policies. Privacy compliance is well addressed with a cookie consent mechanism and GDPR-aligned policies. Overall, the website demonstrates a mature digital presence with good business credibility and moderate technical sophistication.

S

svetzbrani.cz

svetzbrani.cz

58

Svetzbrani.cz is a Czech Republic based e-commerce retailer specializing in firearms, airsoft equipment, self-defense products, and pyrotechnics. Established since 2013, the company offers a wide range of products from well-known brands such as Umarex, Walther, and Beretta, targeting consumers interested in these categories. The website is professionally designed with clear navigation and multiple language and currency options, supporting a medium-sized business model focused on retail sales. Technically, the site is built on the Shoptet platform, utilizing common web technologies including jQuery, Google Analytics, Facebook SDK, and Hotjar for analytics and marketing purposes. Mobile optimization and SEO practices are good, though accessibility is basic. Security posture is adequate with HTTPS enforced but lacks comprehensive security headers and published security policies. The absence of WHOIS data limits domain trust assessment, though the website content and business presence appear legitimate. Cookie consent mechanisms are implemented, but privacy and terms of service pages are missing, indicating room for compliance improvements.

MPI TECH CZ s.r.o. operates a professional e-commerce website specializing in electrical materials and installation services primarily targeting electrical contractors and retail customers in the Czech Republic. The company offers a broad product catalog including switches, sockets, frames, communication technology, circuit breakers, distribution boards, and smart home solutions. The website is built on the Shoptet platform and integrates standard web technologies such as jQuery and Google Analytics, with a focus on user privacy and GDPR compliance through cookie consent mechanisms and a privacy policy page. Despite the absence of WHOIS registration data, the website presents a professional and trustworthy front with secure HTTPS connections and appropriate security headers. However, the lack of direct contact emails or phone numbers in the visible content and missing WHOIS data slightly reduce the overall trustworthiness. The site is free from adult or questionable content and provides a good user experience with clear navigation and relevant content.

B

Bärige

barige.sk

56

Bärige is a Slovakian e-commerce retailer specializing in high-quality mattresses, pillows, beds, and sleep accessories. The company operates a website offering a wide range of products aimed at improving sleep quality, targeting consumers in Slovakia. The business maintains a physical showroom in Bratislava and provides customer support via phone. The website is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and third-party services such as Cloudflare, Google Tag Manager, Facebook Pixel, and Hotjar for performance, marketing, and analytics. While the site is well-structured and professionally designed, it lacks explicit privacy and security policies, which are critical for compliance and trust. The domain registration is consistent with the business claims, and no blocking or WAF challenges were detected, indicating good accessibility.

I

I-STYLE

i-style.lv

44

I-STYLE is a Latvian-based small e-commerce retailer specializing in gold-plated jewelry, Swarovski crystal products, Bulgarian rose cosmetics, and gift items. The website is professionally designed using OpenCart CMS and incorporates modern web technologies such as jQuery, Bootstrap, and Google Analytics. The site offers multilingual support (Latvian and Russian) and multiple currency options, targeting consumers interested in jewelry and cosmetics. The business model focuses on online retail with a niche market position emphasizing quality and original gift products. Technically, the website is moderately optimized for performance and mobile devices, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance. Contact information is available via phone and contact form, and privacy and terms pages exist but are basic. WHOIS data could not be retrieved due to query limits, limiting full domain legitimacy verification. Overall, the website is trustworthy and safe for general audiences, with room for improvement in security and privacy compliance.

Elegant Lashes Studio is a small local beauty salon based in Latvia specializing in professional eyelash extension services. The website presents a clear business focus on offering various eyelash extension techniques to create natural and voluminous lashes. The site is built on WordPress and includes multilingual support via the Google Language Translator plugin, indicating an intent to serve a diverse audience. The technical infrastructure is moderate with good mobile optimization and SEO practices, but lacks advanced security headers and comprehensive privacy documentation. Security posture is adequate with HTTPS enabled, but the absence of security policies and contact information for incident response limits trust. Overall, the business appears legitimate but would benefit from enhanced transparency and security measures.

P

Printero

printero.lv

62

Printero is a Latvian-based e-commerce business specializing in personalized promotional products including textiles, gifts, and branded items. The website is built on the Shopify platform and leverages modern web technologies such as Google Analytics, Google Tag Manager, and hCaptcha for security. The site presents a professional image with clear navigation, product categorization, and customer testimonials, targeting businesses and organizations in the Baltic region seeking custom branding solutions. Security posture is strong with HTTPS enforced and security headers present, though explicit privacy and cookie policies are not detected in the provided content. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the website is trustworthy and well-maintained but would benefit from enhanced privacy disclosures and domain registration transparency.

K

Kreklu Bode

kreklubode.lv

64

Kreklu Bode is a Latvian-based e-commerce retailer specializing in personalized clothing products such as T-shirts and hoodies. The website is built on the Shopify platform, leveraging its secure infrastructure and e-commerce capabilities. The company targets local customers in Latvia seeking customized apparel for personal or business use. The site demonstrates consistent branding and a professional design with good mobile optimization and clear navigation. However, explicit privacy and terms of service policies are not found, which may impact compliance and user trust. Technically, the site uses modern web technologies, including Google Tag Manager, Microsoft Clarity, and Facebook Pixel for analytics and marketing. Security posture is solid with HTTPS enforced and Shopify's secure checkout, but additional security headers could be implemented for enhanced protection. Overall, the website presents a legitimate small retail business with room for improvement in privacy compliance and contact transparency.

L

Latvijas Mājražotāji

majrazotajuveikals.lv

59

Latvijas Mājražotāji operates as a specialized e-commerce platform focused on offering a wide range of artisan and home-produced goods from Latvian producers and craftsmen. The website positions itself as a leading marketplace in Latvia for local products, targeting consumers interested in authentic, locally sourced items. The business model revolves around online retail with additional information about markets and corporate gift options, catering primarily to the Latvian market. The platform is relatively mature, with content indicating establishment since 2017, and maintains consistent branding and professional presentation.

E

Ecolight-led.lv

ecolight-led.lv

39

Ecolight-led.lv is a small Latvian e-commerce retailer specializing in professional lighting solutions and household fans for homes, gardens, offices, and warehouses. The website offers a broad product catalog including LED panels, decorative lights, garden lights, LED bulbs, floodlights, LED strips, solar lights, and power supplies. Customers can order products by adding them to a cart and submitting requests via email, with delivery promised within 3-4 business days. The site is built on WordPress with WooCommerce and Elementor, indicating a modern but standard e-commerce infrastructure. Security posture is adequate with HTTPS enabled and nonce tokens for AJAX, but lacks advanced security headers and formal privacy or terms policies. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site is professional and safe for general audiences but would benefit from improved privacy compliance and security hardening.

A

Auglupiegade.lv SIA

auglupiegade.lv

47

Auglupiegade.lv SIA operates a localized e-commerce platform specializing in fresh fruit baskets, vegetables, berries, and exotic fruits with free delivery across Latvia. The company targets both residential and business customers, positioning itself as a convenient provider of fresh produce. The website is built on WordPress with WooCommerce, leveraging popular plugins such as Yoast SEO and Elementor to enhance user experience and search engine visibility. Social media integration and clear contact information support customer engagement and trust. Technically, the site employs modern web technologies including Google Tag Manager, Google Analytics, and reCAPTCHA for security and analytics. Hosting is provided by 'inmotion', and the site uses HTTPS with a good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are well implemented, contributing to good content discoverability. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, representing an area for improvement. No vulnerabilities or exposed sensitive data were found in the HTML content. Incident response and security policy documentation are absent, which could be enhanced to improve security posture. Overall, the website presents a professional and trustworthy front for a small retail business in Latvia. The lack of WHOIS data limits domain registration verification, but the site content and business information appear consistent and credible. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and adding explicit security and incident response policies to strengthen compliance and trust.

F

FURNBALTIC

furnbaltic.com

54

FURNBALTIC is a newly established small retail e-commerce business specializing in Baltic-inspired furniture, accessories, and interior design services. The website presents a professional and consistent brand image targeting general consumers interested in Baltic design aesthetics. The business model focuses on curated furniture sales and consultation services, positioning itself in a niche market segment. Technically, the website uses a modern tech stack including Bootstrap 4, jQuery, and popular analytics tools such as Google Analytics and Facebook Pixel. The site is mobile optimized with good user experience and clear navigation. Security posture is moderate with basic client-side validation and cookie consent mechanisms but lacks advanced security headers and DNSSEC. Privacy compliance is addressed with a privacy policy and cookie banner indicating GDPR awareness. The domain is very new, consistent with a recent business launch, and registered through a reputable registrar without privacy protection. Overall, the website is functional and professional but could improve security and compliance transparency.

D

durvjusalons.lv

durvjusalons.lv

67

Durvjusalons.lv is a Latvian retail business specializing in the sale of apartment exterior doors, interior doors, and door hardware. The company operates both an e-commerce platform hosted on Shopify and a physical showroom located at Brīvības iela 27, Liepāja. Their market position is focused on serving Latvian customers with door products and related fittings, supported by localized contact information and active social media channels. The website is professionally designed with clear navigation and good mobile optimization, reflecting a small but credible retail operation. Technically, the website leverages the Shopify platform with modern web technologies including JavaScript and CSS. It uses Shopify's CDN hosting and includes tracking pixels for Google Ads and Facebook, indicating a moderate level of digital marketing maturity. Performance is moderate with good SEO and basic accessibility features. Security posture is strong with HTTPS enforced and standard security headers present, although explicit security policies and incident response contacts are not found. Overall, the site demonstrates a good security and privacy compliance stance with a cookie consent mechanism and a privacy policy in place. However, WHOIS data could not be retrieved due to query limits, limiting domain registration verification. No critical vulnerabilities or suspicious content were detected. The business appears legitimate and trustworthy based on website content and structure.

B

BusyBuddyToys™

busybuddy.toys

72

BusyBuddyToys™ operates an e-commerce platform specializing in educational Montessori wooden toys crafted from safe and eco-friendly materials. The company targets parents and educators seeking quality educational toys that foster creativity and learning in children. Positioned in a niche market, BusyBuddyToys™ leverages Shopify's robust platform to deliver a professional and user-friendly shopping experience. The website features comprehensive privacy and cookie policies, reflecting a commitment to user data protection and compliance with GDPR standards. The business maintains a positive reputation with a high aggregate customer rating, reinforcing its market credibility. Technically, the website is built on Shopify, utilizing modern web technologies and third-party integrations such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel for analytics and marketing. The site demonstrates good performance, mobile optimization, and accessibility, ensuring a smooth user experience across devices. Security is well-managed with HTTPS enforcement and standard security headers, although explicit security policies and incident response information are not publicly available. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is strong, supported by visible cookie consent mechanisms and detailed privacy policies. However, the absence of a vulnerability disclosure program or security.txt file suggests room for improvement in transparency and incident handling readiness. Overall, the domain's privacy-protected WHOIS data aligns with typical practices for small e-commerce businesses, and no suspicious patterns were identified. Strategically, BusyBuddyToys™ should consider enhancing its security documentation and incident response visibility to build further trust with customers. Regular audits of third-party scripts and continued adherence to privacy regulations will support sustained compliance and security. The company’s digital maturity is commendable, with opportunities to strengthen security culture and transparency for long-term resilience.

W

WOOD GRAIN LAB

woodgrainlab.com

48

WOOD GRAIN LAB is a small retail business specializing in handmade, eco-friendly children’s furniture and play equipment, primarily targeting parents and caregivers. The company emphasizes quality, safety, and environmental responsibility, sourcing birch plywood from the Baltic states and ensuring products meet safety certifications. The website reflects a niche market position with a clear business model focused on e-commerce sales and customer support. Technically, the website is built on a modern WordPress stack with WooCommerce and Elementor, supported by Cloudflare DNS and integrated with PayPal for payments. The site demonstrates good SEO, mobile optimization, and user experience, though some accessibility features could be improved. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, but lacks explicit security or incident response policies. Overall, the domain registration is consistent and legitimate, supporting the business claims. Privacy compliance is basic, with a cookie consent banner but no dedicated privacy policy page. Strategic improvements include adding privacy and security policy pages, enabling DNSSEC, and enhancing accessibility.

The website foodbank.lv represents Vilattrans Ltd, a Latvian company specializing in food production and sales since 1997. Their core business includes mechanically deboned poultry meat, canned meat, moonshine production, and frozen fish sales, supported by their own refrigeration and storage facilities. The website targets general consumers and possibly business clients interested in natural food products. The site is professionally designed using WordPress with SEO optimization via Yoast plugin and includes product categories and company information clearly presented. From a technical perspective, the site uses a modern WordPress CMS with common plugins for SEO, statistics, and user experience enhancements like Fancybox. The site is mobile optimized and loads with moderate performance. However, there is room for improvement in accessibility and security headers implementation. HTTPS is enabled, ensuring encrypted communication. Security posture is moderate with no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and lack of visible privacy and cookie policies indicate compliance gaps. No incident response or security contact information is provided, which could be improved to enhance trust and readiness. Overall, the website is a legitimate, small Latvian food business with a good online presence but could benefit from enhanced privacy compliance and security best practices to improve trustworthiness and regulatory adherence.

P

Piekrāso pats

piekrasopats.eu

62

Piekrāso pats is a Latvian small business specializing in the retail of automotive paint products and accessories, focusing on precise color matching by code and DIY repair kits. The website serves a niche market of car owners and enthusiasts seeking convenient online ordering and delivery across Latvia. The business model is e-commerce retail with a clear local market focus. Technically, the website is built using Hostinger Website Builder with Astro framework components, integrating Google Fonts, Facebook Pixel, and Google Analytics for marketing and analytics purposes. The site demonstrates good mobile optimization, SEO practices, and a professional design. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is good with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. However, no explicit security policy or incident response information is published. Overall, the website is trustworthy and professionally maintained, with recommendations to enhance security transparency and incident response readiness.

S

SIA Bic

bicfurniture.lv

42

BICFurniture is a Latvian company specializing in the retail and distribution of furniture fittings for windows and doors, window sills, aluminum constructions, and related systems such as GEZE and Twinson. The website targets both business customers and retail consumers primarily within Latvia. The business operates a PrestaShop-based e-commerce platform with a basic but functional design and navigation structure. Technical infrastructure includes legacy jQuery libraries and standard analytics tools like Google Analytics and Yandex Metrika. Security posture is moderate with HTTPS enabled and captcha on forms but lacks modern security headers and uses outdated JavaScript libraries, exposing potential vulnerabilities. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is functional and moderately trustworthy but requires technical and security improvements to enhance protection and compliance.

K

Kanepex

kanepex.com

50

Kanepex is a Latvian-based small business specializing in the retail of organic hemp and rapeseed products aimed at improving health and quality of life. The website is built on WordPress with WooCommerce and Elementor, indicating a modern e-commerce platform with good mobile optimization and SEO practices. The business appears to be newly established in 2023, consistent with the domain registration date. Security posture is adequate with HTTPS enabled and domain locks in place, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. Overall, the website is professional and trustworthy but could benefit from enhanced transparency and security measures.

L

linulenta.lv

linulenta.lv

53

Linulenta.lv is a small Latvian e-commerce business specializing in the sale of high-quality linen fiber thermal insulation materials and related textile products. The website offers a range of products including linen fiber tapes, linen fabrics, hemp fiber, and wool tapes, targeting both consumers and wholesale customers. The business emphasizes delivery by courier within 2-3 days, indicating a focus on efficient logistics and customer service. The site is multilingual, supporting Latvian, English, Russian, Estonian, and Lithuanian languages, enhancing its regional accessibility. Technically, the website is built on the Webnode CMS platform and hosted on Amazon Cloudfront CDN, ensuring reliable content delivery and performance. It employs modern web technologies including JavaScript, Google Tag Manager for analytics, and Google reCAPTCHA for form security. The site is mobile-optimized with a good user experience and clear navigation, although accessibility features are basic. SEO practices are present but could be improved. From a security perspective, the website enforces HTTPS with a valid SSL certificate and uses reCAPTCHA to protect its contact form from spam. However, it lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options, and does not publish a dedicated security policy or incident response information. Privacy and cookie policies are present and include a consent mechanism, but GDPR compliance details are minimal. No vulnerability disclosure or data protection officer information is provided. Overall, linulenta.lv presents as a legitimate small business with a focused product offering and standard e-commerce features. The absence of WHOIS data limits domain trust analysis, but the website content and structure do not raise suspicion. Strategic improvements in security headers, privacy compliance, and transparency around security policies would enhance trust and resilience.

S

Santa Mieriiga

santamieriiga.com

60

Santa Mieriiga is a small artisan retail business specializing in handcrafted brooches inspired by pets. The website showcases the portfolio, commission options, pricing, and contact details, targeting pet lovers seeking personalized accessories. The business operates primarily through direct online orders via a Squarespace platform. Technically, the website is built on Squarespace with standard JavaScript and CSS, offering moderate performance and good mobile optimization. Security posture is strong with HTTPS and HSTS enabled, complemented by a cookie consent banner, though lacking explicit security policies or incident response contacts. The absence of WHOIS registration data raises some concerns about domain legitimacy, but the professional presentation and consistent branding mitigate suspicion. Overall, the site is trustworthy and functional, with room for improvement in security transparency and accessibility.

M

MAALA studija

maala.lv

53

MAALA studija is a small artisanal ceramics studio based in Latvia, specializing in handmade home design ceramic products such as sinks, chandeliers, dishes, candle holders, and interior decorations. The business combines traditional ceramic techniques with modern aesthetics, targeting customers who appreciate unique, handcrafted, and sustainable design items. Additionally, the studio offers coworking space rental, expanding its service offering beyond product sales. The website is professionally designed using the Webnode CMS platform, hosted on AWS S3 with Cloudfront CDN, and includes a cookie consent mechanism and Google Tag Manager for analytics. However, the absence of a privacy policy and terms of service pages indicates room for improvement in compliance and transparency. Security posture is moderate with HTTPS enabled but lacking security headers. WHOIS data could not be retrieved due to query limits, limiting domain registration trust verification. Overall, the website presents a credible small business with a focus on artisanal craftsmanship and local market presence.