Retail security reports

S

SIA “Orkla Care”

livol.lv

37

SIA “Orkla Care” operates the LIVOL brand in Latvia, offering Scandinavian quality vitamin systems and dietary supplements tailored for various age groups and lifestyles. The company positions itself as a trusted provider of health supplements with a focus on holistic health and innovative production technologies. The website is built on WordPress with modern frontend technologies and integrates Google Analytics and OneTrust for privacy compliance. Contact information and company registration details are clearly presented, enhancing business credibility. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers are missing. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the website is professional, user-friendly, and compliant with GDPR requirements.

S

SIA Metroks

metroks.lv

46

SIA Metroks operates a professional retail and wholesale business specializing in tiles, facades, and floor coverings, serving both private and public construction projects primarily in Latvia. Established in 2000, the company has a strong market presence with over 25 years of experience, offering a wide range of finishing materials and related services such as consultations, 3D bathroom visualizations, and delivery. The website reflects a mature digital presence with a modern Vue.js frontend, integrated analytics, and cookie consent mechanisms, indicating a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks visible security headers and published security policies or incident response contacts. No WHOIS data was retrievable due to query limits, limiting domain registration trust verification. However, the website content and business information appear professional and trustworthy, with clear contact details and social media presence. Overall, the website demonstrates good content quality, technical implementation, and business credibility, but could improve privacy compliance and security posture by publishing privacy policies, security policies, and implementing additional security headers. The risk level is moderate with no critical vulnerabilities detected, but WHOIS data unavailability is a limitation for full trust assessment.

A

Alfa ŽOGI

alfazogi.lv

31

Alfa ŽOGI is a Latvian-based e-commerce business specializing in the sale of fencing, gates, gate automation, and related accessories. The website targets Latvian customers seeking a wide selection of fencing products and related hardware. The business operates a PrestaShop-based online store featuring product catalogs, user accounts, and shopping cart functionality. The market position appears to be local or regional within Latvia, focusing on retail and manufacturing sectors related to fencing solutions. Technically, the website employs common web technologies including jQuery, Swiper.js for sliders, Font Awesome icons, and Google Analytics for visitor tracking. The site is built on the PrestaShop CMS platform, which is widely used for e-commerce. The website is moderately optimized for mobile devices and has a good user experience with clear navigation and product presentation. However, the site lacks HTTPS encryption, which is a critical security shortfall. From a security perspective, the absence of HTTPS and security headers significantly lowers the security posture. The site does not display any visible security certifications or incident response contacts. Privacy compliance is basic, with a privacy policy page present but no cookie consent mechanism or GDPR compliance indicators. The WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Contact information including phone numbers, email, and physical address is clearly provided, enhancing business credibility. Overall, the website is functional and professional in design but requires urgent security improvements, especially implementing HTTPS and security headers. Privacy compliance and transparency could also be enhanced. The lack of WHOIS data limits full trust assessment but the site appears legitimate based on content and contact details.

S

SUDOMINO naujos-padangos.lt

naujos-padangos.lt

62

SUDOMINO naujos-padangos.lt operates as an online retailer specializing in the sale of new tires across various vehicle categories in Lithuania. The website offers a broad catalog of tire brands and types, emphasizing competitive pricing, fast delivery, and multiple payment options including cash. The platform is built on PrestaShop, indicating a mature e-commerce infrastructure with integrated analytics and marketing tools. The site is well-structured with clear navigation and product information, targeting vehicle owners and buyers in the region. However, the absence of accessible WHOIS data limits the ability to fully verify domain legitimacy and ownership details. Security posture is generally good with HTTPS and security headers in place, but lacks visible security policies or incident response contacts. Privacy and cookie policies are present and appear compliant with GDPR standards. Overall, the website presents a professional and trustworthy e-commerce experience with moderate risk due to missing domain registration transparency.

B

bioefekts.lv

bioefekts.lv

51

bioefekts.lv is an e-commerce platform specializing in biological and organic gardening products, targeting gardeners and agricultural professionals primarily in Latvia and the Baltic region. The website offers a multilingual shopping experience with a catalog of fertilizers, biological pest control agents, and soil enhancers. Technically, the site is built on WordPress with WooCommerce and Elementor, integrating marketing tools like Facebook Pixel and MakeCommerce payment gateway. The site demonstrates good design quality, mobile optimization, and SEO practices, although accessibility features are basic. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks some advanced security headers and formal vulnerability disclosure channels. WHOIS data could not be retrieved, limiting full domain legitimacy assessment. Overall, the site is functional, professional, and safe for general audiences.

I

IEVAS SIERS

ievassiers.lv

55

IEVAS SIERS is a Latvian artisanal cheese producer with a focus on traditional cheese maturation and quality. The company targets gourmets and local consumers interested in high-quality cheese products. Their business model includes retail and online sales through an e-commerce platform. The website is built on the Mozello CMS platform, hosted via Amazon Cloudfront CDN, and uses common web technologies such as jQuery and Fancybox. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit incident response information. Privacy compliance is good with a visible privacy policy and cookie banner. WHOIS data could not be retrieved due to query limits, limiting domain registration trust analysis. Overall, the website is professional and trustworthy for a small local business.

GeoStar is a Latvian company specializing in the retail and servicing of surveying instruments, optical and laser levels, tachymeters, and scanners. The company targets professionals and businesses in geodesy, construction, and related fields, offering sales, rental, calibration, and training services. Their market position is that of a specialized regional supplier with a focus on quality and professional support. The website reflects a solid business presence with clear contact information and product offerings. Technically, the site uses a variety of JavaScript libraries and a CMS platform (DIRcms), with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA usage but lacks advanced security headers and explicit privacy policies, which are areas for improvement. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

PartsPoint is a Latvian-based e-commerce retailer specializing in automotive parts, oils, additives, and maintenance products. The website is built on the PrestaShop platform and offers a broad catalog of automotive chemical products and accessories targeting vehicle owners and automotive service providers in Latvia. The site is professionally designed with clear navigation and basic mobile optimization. Security-wise, the site enforces HTTPS and implements GDPR-compliant cookie consent but lacks some advanced security headers such as Content-Security-Policy and X-Frame-Options. No WHOIS data was available due to query limits, limiting domain registration verification. Overall, the site presents a moderate security posture with room for improvement in security headers and technical SEO. Contact information is clearly provided, enhancing business credibility.

C

Consumo

vartu-automatika.lv

42

Consumo operates a professional e-commerce and retail website specializing in gate automation and related access control products in Latvia. The company targets private homeowners and property managers, offering a broad product range including automatic gates, barriers, bollards, and parking systems. The website is well-structured, mobile-optimized, and includes essential contact information and social media presence, supporting a credible business image. Technically, the site uses modern JavaScript libraries and analytics tools, with HTTPS enforced and a cookie consent mechanism implemented, indicating basic privacy compliance. However, the absence of a privacy policy and security headers suggests room for improvement in security posture. WHOIS data could not be retrieved due to query limits, limiting domain trust assessment. Overall, the site presents a trustworthy and professional front for a small regional business.

Ahmadtea.lv is the official website of LATVOKO SIA, the authorized representative of Ahmad Tea in the Baltic States since 1998. The company specializes in retailing a wide range of premium teas including black, green, herbal, decaffeinated varieties, and gift sets. The website serves as an informational and promotional platform, providing product catalogs, media content, and links to an official online shop. The business positions itself as a premium tea distributor with a strong emphasis on British tea traditions and quality certifications. Technically, the website employs a traditional web stack with jQuery, Bootstrap, and various plugins, delivering a moderate performance and good mobile optimization. However, some technologies are dated, and accessibility features are basic. Security posture is moderate with HTTPS in use but lacks visible security headers and explicit privacy or cookie policies, indicating compliance gaps. No WHOIS data was available due to query limits, limiting domain trust verification. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

J

JMK LUX

jmklux.lv

52

JMK LUX is a small Latvian company specializing in the manufacturing and retail of wooden garden furniture and decorative elements. Their website showcases a broad product catalog including garden tables, benches, playhouses, and other outdoor furniture, with an emphasis on custom orders tailored to customer needs. The business targets local customers in Latvia seeking quality garden furniture solutions. Technically, the website uses modern web technologies including Bootstrap for responsive design, Google Analytics and Tag Manager for tracking, and implements a cookie consent banner indicating some level of privacy awareness. Security posture is moderate with HTTPS enabled and CSRF tokens present, but lacks visible security headers and formal privacy or terms of service pages. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the site is professional, user-friendly, and trustworthy for its business scope.

Avanti AB is a small Latvian retailer specializing in automotive accessories, particularly German-made roof racks, bicycle holders, and roof boxes. The company targets vehicle owners in Riga and Latvia seeking high-quality automotive products with a 24-month warranty. The website is built on WordPress using the Divi theme and integrates modern tools such as Google Analytics and Leaflet maps for location display. While the site is well-structured and content-rich, it lacks key compliance documents such as privacy and cookie policies. Security posture is generally good with HTTPS enabled, but the absence of security headers and incident response information indicates room for improvement. Overall, the business appears legitimate and focused on a niche market segment with clear contact information and product offerings.

M

ManiVitamini.lv

manivitamini.lv

46

ManiVitamini.lv is a Latvian e-commerce website specializing in the sale of high-quality dietary supplements, vitamins, and professional sports nutrition products. The site targets health-conscious consumers in Latvia, offering a comprehensive range of products categorized by health needs and dietary preferences. The business operates primarily through an online retail model, leveraging WordPress and WooCommerce for its platform. The website demonstrates a consistent brand presence with clear navigation and a professional design tailored to its niche market. Technically, the site uses a modern WordPress stack with popular plugins for SEO, multilingual support, and e-commerce functionality. Performance and mobile optimization are adequate, supporting a good user experience. Security posture is reasonable with HTTPS, secure login forms, and reCAPTCHA integration, though some security headers are missing and no public security or incident response policies are found. Privacy compliance is weak due to the absence of visible privacy and cookie policies, which is a notable gap given GDPR requirements. WHOIS data could not be retrieved, limiting domain trust analysis. Overall, the site appears legitimate and professionally managed but would benefit from enhanced privacy disclosures and security hardening.

F

Fenix Outdoor

fenixoutdoor.se

65

Fenix Outdoor is a large international group specializing in premium outdoor brands and retail, including well-known subsidiaries such as Fjällräven, Hanwag, and Royal Robbins. The company focuses on enabling outdoor experiences with a strong emphasis on sustainability and quality. The website is professionally designed using WordPress, with good mobile optimization and clear navigation. It integrates modern technologies such as Google Analytics and Cookiebot for privacy compliance. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are absent. WHOIS data is unavailable, which slightly impacts domain trust analysis but the overall business credibility remains high due to consistent branding and professional content. The site is free from adult or questionable content and is fully accessible without WAF or blocking mechanisms.

L

Latvijas Sveces

latvijassveces.lv

62

Latvijas Sveces is a small Latvian e-commerce retailer specializing in the sale of various types of candles including soy wax, stearin, beeswax, and aromatic candles, along with candle accessories and gift sets. The business targets general consumers primarily in Latvia with delivery options extending to other European countries. The website is built on the Shopify platform using the Dawn theme, indicating a modern and scalable technical infrastructure. The site is well-structured, mobile-optimized, and includes multi-language support for Latvian, Russian, and English users. Security posture is strong with HTTPS enforced, use of hCaptcha for form protection, and standard security headers likely provided by Shopify. However, privacy compliance could be improved by implementing explicit cookie consent mechanisms and publishing more detailed privacy and security policies. The absence of WHOIS data limits domain trust verification, but the overall digital presence and platform usage suggest a legitimate and professional business. Strategic recommendations include enhancing privacy compliance, publishing terms of service, and improving direct contact information visibility.

F

FLOWERS24 LTD

flowers24.lv

46

Flowers24.lv is a small e-commerce business specializing in flower and teddy bear sales with delivery services primarily targeting the Latvian market, especially Riga. The website is built on WordPress with WooCommerce, leveraging popular plugins and integrations for e-commerce functionality and marketing. The company presents clear contact information and maintains a presence on multiple social media platforms, enhancing customer engagement. The site includes privacy and cookie policies with consent mechanisms, indicating awareness of GDPR compliance. Technically, the site is hosted on SiteGround and uses modern web technologies, but lacks some security headers that could improve its security posture. The absence of WHOIS data limits domain legitimacy verification, but the website content and business information appear consistent and professional. Overall, the site offers a good user experience with clear navigation and product presentation, suitable for its target audience.

R

Rīgas žaluzijas

zaluzijupasaule.lv

47

Rīgas žaluzijas is a small Latvian retail business specializing in the custom manufacturing and installation of window blinds, serving Riga and surrounding areas. The company emphasizes a 12-year market presence and offers a variety of blinds including plisētas, dienas-nakts, and rullo types. Their website is professionally designed with good navigation and mobile optimization, leveraging modern frontend technologies such as Bootstrap and Font Awesome. The technical infrastructure includes integration with Google Analytics and Tawk.to for live chat support, indicating a moderate level of digital maturity. Security posture is adequate but could be improved by enabling DNSSEC and implementing security headers. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the business appears legitimate and trustworthy with clear contact information and certifications like EUROVENT.

S

SIA LAVASH

lavash.lv

41

Lavash.lv is an e-commerce platform based in Latvia specializing in bakery products such as lavash, pita, and matnakash, along with complementary grocery items including beverages, sweets, and meat products. The company targets general consumers and businesses like cafes and restaurants, offering next-day delivery across Latvian cities. The website is professionally designed with good navigation and mobile optimization, supporting multiple languages including Latvian, Russian, and Armenian. Technically, the site uses modern JavaScript libraries and secure HTTPS connections, with forms protected by CSRF tokens and input validation. However, there is no visible cookie consent mechanism or detailed security policy published. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site presents a trustworthy small retail business with room for improvement in privacy compliance and security transparency.

U

Unikulma Oy

unikulma.lv

64

Unikulma Oy is a well-established Finnish company specializing in the manufacture and retail of customized beds, ergonomic pillows, and advanced sleep products under the SteadyBody® brand since 1985. The company operates a professional e-commerce website hosted on Shopify, targeting consumers in Finland seeking high-quality, personalized sleep solutions. The website demonstrates a mature digital presence with comprehensive privacy and cookie policies, multiple customer contact forms protected by reCAPTCHA, and integration of modern analytics and marketing tools. Security posture is strong with HTTPS enforcement and appropriate security headers, although there is room to enhance transparency by publishing a dedicated security policy and incident response information. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the entity.

S

Sabiedrība ar ierobežotu atbildību „Albūmi”

albumi.lv

46

Albumi.lv is a Latvian e-commerce business specializing in personalized photo products including photobooks, calendars, greeting cards, photo journals, stencil books, and gift cards. The company targets general consumers interested in creating custom photo memorabilia with an easy-to-use online platform. The website demonstrates a consistent brand presence with clear product offerings and active social media engagement. Technically, the site uses common web technologies such as jQuery, Google Tag Manager, and Facebook SDK, with a cookie consent mechanism indicating GDPR awareness. Security posture is moderate with HTTPS enabled and secure login forms, but lacks advanced security headers and explicit security policies. Overall, the site is professional, trustworthy, and suitable for its market niche.

L

Latvijas Pārtikas tirgotāju asociācija

tirgotaji.lv

48

Latvijas Pārtikas tirgotāju asociācija (LPTA) is a Latvian food retail association focused on promoting the development and regulation of the food retail sector in Latvia. The organization advocates for consumer interests, quality food, and a responsible business environment. It is a member of EuroCommerce, indicating a recognized position in the European retail landscape. The website provides clear contact information and partner affiliations but lacks detailed corporate data and privacy policies. Technically, the website is basic with HTML and CSS only, no detected CMS or advanced frameworks. There is no evidence of HTTPS or security headers from the provided data, which suggests potential security improvements are needed. The site lacks privacy and cookie policies, and no analytics or tracking technologies were detected, indicating minimal user data collection. From a security perspective, the absence of HTTPS and security headers reduces the security posture. No forms or scripts collecting user data were found, lowering immediate risk. The WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site appears legitimate but would benefit from enhanced security and compliance measures. The overall risk is moderate with recommendations to implement HTTPS, add privacy and cookie policies, improve security headers, and provide clearer WHOIS transparency to enhance trust and compliance.

N

Nelss

nelss.lv

55

Nelss.lv is a Latvian e-commerce website specializing in household, business, rental, and construction products. The site targets both individual consumers and legal entities, offering a wide range of quality products from numerous manufacturers at competitive prices. The business appears to have been operational since at least 2017, with a consistent brand presence and a localized market focus in Latvia, also maintaining a Swedish domain for regional reach. Technically, the website is built on WordPress with WooCommerce, leveraging popular plugins such as Yoast SEO and Slider Revolution, and integrates Google Analytics and Google Tag Manager for marketing and analytics purposes. Security measures include HTTPS and reCAPTCHA for form protection, but lack explicit security headers and published security policies. Privacy and cookie policies are not clearly found, indicating room for compliance improvement. Overall, the site presents a professional and functional e-commerce platform with moderate technical maturity and a solid business credibility profile.

Ķ

Ķiploku Pasaule

kiplokupasaule.lv

59

Ķiploku Pasaule is a small Latvian business specializing in the production and sale of garlic and vegetable products. The company operates an e-commerce platform for direct sales and offers tourism experiences such as product tastings at their farm. Their market position is that of a local producer with added value offerings, targeting consumers, groups, and businesses interested in quality garlic products and collaboration opportunities. The website is multilingual, professionally designed, and provides clear contact channels including phone, email, WhatsApp, and Facebook. Privacy and cookie policies are present, indicating GDPR compliance. Technically, the site is built on WordPress with WooCommerce and uses common plugins for SEO, marketing, and user engagement. Security posture is adequate with HTTPS and captcha protections but lacks advanced security headers and incident response information. WHOIS data could not be retrieved due to query limits, but no suspicious indicators were found in the website content. Overall, the site is trustworthy and professionally maintained, suitable for its business scope.

ROLYPRINT SIA operates a Latvian e-commerce website specializing in custom printing services for apparel such as T-shirts, polos, jackets, and promotional products including bags, pens, mugs, and umbrellas. The company targets local consumers and businesses seeking affordable and fast printing solutions, positioning itself as a professional provider with quick order fulfillment. The website is built on the PrestaShop platform and integrates multiple JavaScript libraries for enhanced user experience and analytics. Contact information including physical address, phone numbers, and email is clearly presented, supporting business credibility. Technically, the website employs modern web technologies such as jQuery, Font Awesome, Google Fonts, and Yandex Metrika for analytics. The site uses HTTPS, ensuring encrypted communication, but lacks visible security headers which could enhance security posture. The website is moderately optimized for performance and mobile devices, with good navigation and content relevance. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. From a security perspective, the site shows basic good practices like HTTPS and token usage in forms but would benefit from implementing security headers and a vulnerability disclosure policy. No WHOIS data was available due to query limits, limiting domain legitimacy verification. No adult or questionable content is present, making the site safe for general audiences. Overall, ROLYPRINT.lv is a legitimate small Latvian retail business with a functional and professional website, though improvements in privacy compliance and security hardening are recommended to enhance trust and regulatory adherence.

S

StereoPlus

stereoplus.lv

48

StereoPlus is a Latvian retail company specializing in high-end audio equipment, offering products from over forty brands including well-known manufacturers such as Hegel, Sonus Faber, McIntosh, and Nordost. The company operates an e-commerce website built on WordPress and WooCommerce, providing both online shopping and an in-store experience. The website is professionally designed with good navigation and mobile optimization, targeting consumers interested in premium audio technology. Technical infrastructure includes modern web technologies and integrations with Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is solid with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit privacy and security policies are not clearly presented. Overall, the site appears trustworthy and well-maintained, though WHOIS data is unavailable due to query limits, limiting domain registration verification. Strategic recommendations include adding comprehensive privacy and security policies, improving accessibility, and establishing vulnerability disclosure processes.

U

URZO

urzonailfiles.com

50

URZO is a small retail and e-commerce business specializing in innovative nail care products such as titanium nail files, interchangeable nail files, and manicure bases. The website is built on WordPress with WooCommerce and supports multiple languages, targeting professional nail technicians and consumers seeking hygienic and versatile nail care tools. The business was founded in 2023, consistent with the domain registration date. Technically, the website uses modern web technologies and plugins, including Elementor and WPML, and integrates Google Analytics and Tag Manager for user tracking. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not provide explicit privacy or cookie policies, which are compliance gaps. Overall, the website is professional and functional but could improve privacy compliance and security hardening.

G

GUNSnLASERS SIA

dumusveces.lv

59

Dumusveces.lv is a Latvian retail and e-commerce business specializing in the sale of high-quality colored smoke candles, including the well-known EnolaGaye brand. The company operates physical stores in Riga and offers delivery via Omniva parcel machines across Latvia. Their market position is strengthened by being the official distributor of EnolaGaye smoke grenades since 2015. The website is built on Shopify, leveraging modern web technologies and third-party analytics and marketing tools to support its operations. Contact information and social media presence are clearly provided, enhancing customer trust and engagement. However, the absence of visible cookie consent mechanisms and unavailable WHOIS data limit full compliance and trust verification.

V

VitaCare International, SIA

vitacare.lv

42

VitaCare International, SIA operates an e-commerce platform focused on health and wellness products primarily targeting Latvian consumers. The website offers multilingual support and highlights key business features such as free delivery over €21, a 14-day return policy, and multiple payment options. The company presents itself as a small but professional retailer with partnerships with well-known pharmacy chains in Latvia. Technically, the website is built on WordPress with WooCommerce and uses modern plugins and themes, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is professional and trustworthy but could improve privacy and security practices.

"

"Gardas"

paipaluolas.lv

39

The website paipaluolas.lv represents a small retail business specializing in fresh quail eggs with free delivery services primarily targeting customers in Riga and surrounding areas in Latvia. The business operates an e-commerce model with direct-to-door delivery and uses online forms to collect customer information for delivery inquiries. The site branding centers around the "Gardas" name, emphasizing freshness and natural products. Technical infrastructure includes common marketing and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and Inspectlet, integrated into a proprietary CMS platform. The website demonstrates moderate digital maturity with basic mobile optimization and SEO practices but lacks comprehensive privacy and cookie policies, which impacts compliance posture. Security posture is moderate with HTTPS usage implied but no explicit security headers detected. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security best practices.

D

Divi Turki

diviturki.lv

46

Divi Turki operates an e-commerce and retail business specializing in premium Ceylon tea and authentic Italian coffee under the Bonati and Bonetti brands. The company has a physical presence in Latvia with stores in Riga and Daugavpils and offers a wide range of tea and coffee products online. The website is professionally designed using WordPress and WooCommerce, supporting multiple languages and providing a smooth user experience. The technical infrastructure includes modern JavaScript libraries and analytics tools such as Google Analytics and Facebook Pixel. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers could be improved. Privacy compliance is addressed with clear policies and GDPR consent. However, WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the business appears legitimate and well-positioned in the Latvian premium tea and coffee market.

D

Den Braven

denbraven.lv

52

Den Braven is a regional Latvian e-commerce and retail business specializing in construction adhesives, sealants, polyurethane foams, and aerosol paints. The website serves as a product catalog and online store targeting construction professionals and retail customers in Latvia. It is affiliated with the Arkema group, a recognized chemical company. The site uses WordPress with WooCommerce and WPBakery Page Builder, indicating a mature digital infrastructure with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security policies and vulnerability disclosure channels. Privacy compliance is limited due to missing privacy and terms of service pages. Overall, the website is professional, trustworthy, and well-branded, but could improve transparency and security documentation.

The website www.sporta-formas.lv represents a small Latvian business specializing in the manufacturing and printing of custom sports uniforms and related apparel. The company offers a variety of sportswear products including basketball, motocross, rugby, hockey, and volleyball uniforms, as well as accessories and flags. The site targets sports teams and fans primarily within Latvia, emphasizing local production and quick turnaround times. The business model is focused on direct retail and custom manufacturing services, supported by design consultation and sample production. The website content is professional and consistent, with clear navigation and contact information, including social media presence on Facebook.

M

Manatapete

manatapete.lv

67

Manatapete.lv is a Latvian e-commerce website specializing in the sale of photographic, traditional, and self-adhesive wallpapers. The site targets local consumers interested in modernizing their home interiors with a variety of wallpaper designs. The business operates on the Shopify platform, leveraging a modern tech stack including Google Tag Manager, Facebook Pixel, and Hotjar for analytics and marketing. The website demonstrates good digital maturity with responsive design, clear navigation, and GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS enforced and CAPTCHA protections on forms, though some security headers could be improved. The absence of WHOIS data limits full domain legitimacy assessment, but the website content and technical setup indicate a legitimate small retail business. Overall, the site provides a professional and trustworthy shopping experience for its target audience.

D

DRY DRY Baltic SIA

drydry.lv

39

DRY DRY Baltic SIA operates an e-commerce website specializing in long-lasting antiperspirant cosmetic products. The company positions itself as an innovative leader in the antiperspirant market with over a decade of research backing its products. The website targets general consumers seeking effective sweat protection solutions, offering multiple product variants including formulations for teenagers and foot sprays. The business model is retail-focused with direct online sales and customer engagement through social media channels. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and tracking tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized and presents a professional design with clear navigation. However, some technical improvements are recommended, such as implementing security headers and enhancing privacy compliance features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data, but lacks visible security headers and explicit privacy or cookie policies. No WHOIS data was available due to query limits, limiting domain registration verification. Overall, the security posture is moderate with room for improvement in compliance and transparency. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include adding privacy and cookie policies with consent mechanisms, improving security headers, and publishing incident response contacts to enhance trust and compliance.

B

BIO2YOU

bio2you.lv

46

BIO2YOU is a Latvian-based e-commerce business specializing in natural cosmetic products, particularly those featuring sea buckthorn oil. The company emphasizes combining natural healing properties with scientific knowledge to offer skincare solutions targeting anti-aging, skin hydration, and healing. The website is professionally designed, mobile-optimized, and provides clear navigation and product categorization. Technical infrastructure is built on WordPress with WooCommerce and Elementor, leveraging modern plugins and caching for performance. Security posture is good with HTTPS and no evident vulnerabilities, though security headers could be improved. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy policy found. Overall, the business presents as a legitimate small retail entity with a focus on natural cosmetics made in Latvia.

S

SIA LANEKSS

lanekssprodukti.lv

57

LANEKSS is a Latvian-based e-commerce retailer specializing in food and household products for homes and offices. The company emphasizes express delivery and professionalism, serving both local businesses and consumers. The website is well-structured with clear navigation and a broad product catalog, targeting the Latvian market. Technically, the site uses standard web technologies including Google Fonts and Font Awesome, with a moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks advanced security headers and explicit privacy compliance indicators. The absence of WHOIS data limits full legitimacy verification. Overall, the site presents a professional retail business with room for improvement in security and compliance transparency.

K

KIDDIX SIA

kiddixkid.com

48

KiddixKid.com is a small Latvian e-commerce retailer specializing in sustainable first steps sandals and kids shoes. The company, KIDDIX SIA, founded in 2018, targets parents and caregivers seeking quality footwear for young children. The website offers a clean, professional design with clear navigation and product presentation, supporting an online sales business model focused on a niche market segment. Technical infrastructure includes common marketing and analytics tools such as Google Analytics and Facebook Pixel, hosted behind Cloudflare DNS services. The site is mobile optimized and performs moderately well, though accessibility and SEO could be improved. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and advanced security headers. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism despite tracking scripts. Contact information and company registration details are clearly provided, enhancing business credibility. Overall, the website is safe, professional, and trustworthy with room for security and privacy enhancements.

A

ABC serviss

abcserviss.lv

41

ABC serviss is a small Latvian business specializing in printer cartridge refilling, printer and computer repair services, and sales of related office supplies. The website presents a local retail and service business with a focus on affordability and convenience, targeting consumers and businesses in Latvia. The site content is well-structured with clear navigation and multiple service categories, including toner and ink cartridges, printer repairs, and office supplies. The presence of a YouTube channel and customer card discounts indicate some level of customer engagement and marketing effort. Technically, the website uses older JavaScript libraries and a custom CMS, with basic mobile optimization and SEO. Security posture is weak due to lack of visible HTTPS confirmation, absence of security headers, and no privacy or cookie policies. Contact information is minimal, limited to a phone number in the page title and meta description, with no email or physical address found. Overall, the site is functional but requires improvements in security, privacy compliance, and technical modernization.

P

Pro1SoundStore

pro1soundstore.com

55

Pro1SoundStore is a small retail business specializing in high fidelity audio equipment, including audiophile HD records, digital to analog converters, and sound tuning accessories. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies. The site presents basic content with moderate branding consistency and targets audiophiles and sound enthusiasts. Technical infrastructure is typical for Wix-hosted sites, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy compliance features. The absence of WHOIS data and domain registration details introduces some trust concerns, though the presence of social media links and structured data markup supports legitimacy. Overall, the site is functional but would benefit from enhanced privacy policies, security headers, and clearer business information to improve trust and compliance.

S

SQUAD.LV SIA

zapravkakartridja.lv

38

The website zapravkakartridja.lv represents a small Latvian business, SQUAD.LV SIA, specializing in cartridge refilling services, computer repair, and web development. The business targets local customers in Riga and surrounding areas, offering both ink and toner cartridge refilling, sales of new cartridges, and related IT services. The site is built using Mobirise CMS with Bootstrap framework and integrates multimedia content such as YouTube videos and Google Maps for location display. Contact information is clearly presented, including phone, email, and physical address, enhancing business credibility. From a technical perspective, the website uses a modern responsive design with Bootstrap and jQuery, ensuring good mobile optimization and user experience. However, the site lacks advanced security headers and privacy compliance documentation such as privacy or cookie policies, which are critical for GDPR compliance given the EU location. No WHOIS data was available due to query limits, limiting domain registration verification. The site does not appear to use analytics or tracking beyond embedded YouTube content, indicating minimal user tracking. Security posture is basic with no HTTPS verification from the provided data and no evident security best practices implemented in the HTML content. The absence of privacy and cookie policies and security.txt files indicates compliance gaps. No vulnerabilities or suspicious content were detected, and the content is safe for general audiences. Overall, the site is functional and professional but requires improvements in security and privacy compliance to enhance trust and regulatory adherence. Strategic recommendations include implementing HTTPS with strong TLS, adding security headers, publishing privacy and cookie policies, establishing incident response contacts, and conducting regular security audits. These steps will improve the security posture, compliance, and user trust, supporting sustainable business growth.

M

My Bag

mybag.com

74

My Bag is an established online retailer specializing in luxury designer handbags and accessories, primarily targeting consumers in the United Kingdom. The website offers a wide range of products from well-known brands, with features such as next day delivery and exclusive discounts for NHS and key workers, positioning itself as a competitive player in the luxury e-commerce retail sector. Technically, the site is built on modern web technologies including React and Next.js, with integrations for analytics and performance monitoring. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security-wise, the website enforces HTTPS, employs standard security headers, and avoids exposing sensitive data, though it lacks a publicly visible security policy or incident response information. The absence of WHOIS data reduces transparency but is likely due to privacy protection, which is common for e-commerce businesses. Overall, the site is professional, secure, and trustworthy, with room for improvement in transparency and explicit security communications.

I

IGLU Soft Play

iglusoftplay.eu

63

IGLU Soft Play operates a professionally designed e-commerce website specializing in durable and safe soft play blocks for babies and toddlers. The company targets parents and childcare businesses, offering custom soft play sets that support developmental and Montessori principles. The website is hosted on Shopify, leveraging a modern tech stack with integrations for marketing, analytics, and customer engagement. The business maintains GDPR compliance with a comprehensive privacy and cookie policy, including consent mechanisms. Security posture is strong with HTTPS, security headers, and no exposed sensitive data, although explicit security policies and incident response contacts are not published. Overall, the site presents a trustworthy and professional online presence suitable for its niche market.

S

Sia Livaka

livaka.lv

44

Sia Livaka operates an e-commerce website livaka.lv, serving as the official distributor for child and family product brands such as TFK, Besafe, and Voksi in Latvia. The company targets parents and families seeking high-quality, safe, and functional products for children, including car seats, strollers, sleeping bags, and feeding bottles. The website reflects a small retail business with a clear focus on quality and customer service. Technically, the site is built on WordPress with WooCommerce, leveraging popular plugins like Yoast SEO and MonsterInsights for analytics and SEO optimization. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enabled and use of reCAPTCHA, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, enhancing trust and compliance. However, WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the site is safe, professional, and trustworthy, with moderate technical sophistication and good privacy practices.

M

Mārupes pagasta zemnieku saimniecība “Mārtiņrozes”

martinrozesstendins.lv

47

Mārupes pagasta zemnieku saimniecība “Mārtiņrozes” is a small Latvian agricultural business founded in 2018, specializing in the cultivation and sale of vegetables, herbs, fruits, and other crops. The company operates an e-commerce platform alongside local sales channels such as a self-service stand and direct delivery within Latvia. The website is built on WordPress with WooCommerce, providing a functional and user-friendly shopping experience primarily targeting local consumers interested in fresh and processed farm products. The business maintains a consistent brand presence with clear product offerings and contact points.

G

GASTROSERVISS

gastroserviss.lv

40

GASTROSERVISS is a Latvian small business specializing in the retail and servicing of professional kitchen and laundry equipment. Their offerings include sales, installation, maintenance, and spare parts supply, targeting professional kitchens and laundry facilities. The website is built on WordPress using the Astra theme and is multilingual, supporting Latvian, English, and Russian languages. It integrates Google Analytics for visitor tracking and uses Yoast SEO for search engine optimization. The site is well-branded with partner logos from reputable kitchen equipment manufacturers, enhancing its market credibility. Technically, the website demonstrates a moderate level of digital maturity with a modern CMS, responsive design, and SEO best practices. However, it lacks some security best practices such as security headers and visible privacy or cookie policies, which are important for compliance and user trust. The SSL configuration is excellent, ensuring encrypted communications. From a security perspective, the site shows no immediate vulnerabilities or exposed sensitive data but would benefit from implementing security headers and formal privacy and cookie policies. The absence of a vulnerability disclosure policy or security contact points indicates room for improvement in incident response readiness. Overall, the website represents a legitimate, professional small business with a solid online presence but should enhance its privacy compliance and security posture to align with best practices and regulatory requirements.

Dabasperles.lv is a Latvian-based e-commerce website specializing in natural beauty and skincare products. The site offers a range of products for body, face, hair, bath rituals, lips, and gifts, targeting consumers interested in natural and artisanal cosmetics primarily in the Baltic region. The website is multilingual, supporting Latvian, English, Lithuanian, and Estonian languages, enhancing accessibility for regional customers. The business model focuses on online retail with a strong emphasis on customer testimonials to build trust and credibility. Technically, the website is built on Joomla CMS and leverages modern frontend technologies including Bootstrap, UIkit, jQuery, and Swiper.js for responsive design and interactive elements. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms with opt-in functionality, reflecting a good level of digital maturity and privacy awareness. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses cookie consent blocking for session cookies until user approval, which is a positive privacy practice. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly declared, which could be improved. No WHOIS data was available due to query limits, but the website content and structure do not indicate suspicious or malicious activity. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, Dabasperles.lv presents a professional and trustworthy online presence for a small natural cosmetics retailer. The main risks relate to incomplete security header implementation and lack of visible contact information or incident response details. Strategic improvements in these areas would enhance security posture and customer trust.

P

Petarde

svetkiem.com

45

Petarde Ltd operates a Latvian e-commerce website specializing in fireworks, party supplies, and event organization services. The company is licensed and has a long-standing reputation in the fireworks industry dating back to 1988, with the current domain registered in 2016. The website offers a broad range of products including pyrotechnics, confetti, balloons, lanterns, and related event equipment rentals. It also provides customized fireworks shows for weddings and city events, positioning itself as a key player in the local retail and event services market. Technically, the site is built on WordPress with WooCommerce, integrating common marketing and social media tools such as Yoast SEO, Google Analytics, Facebook SDK, and ShareThis for sharing and tracking. The hosting is provided by HostGator, and HTTPS is enforced site-wide, ensuring secure communications. Security posture is moderate with room for improvement, notably the absence of DNSSEC and security headers. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, indicating GDPR awareness. However, no explicit security policy or incident response information is published. Overall, the website is professional, trustworthy, and safe for general audiences, with a solid business foundation and digital presence.

H

hairfree.lt

hairfree.lt

64

Hairfree.lt is an established Lithuanian e-commerce retailer specializing in beauty and health care devices, cosmetology furniture, and massage salon equipment. The company targets professional salons and health care providers across the EU, boasting over 150,000 customers served since 2010. The website presents a professional and consistent brand image with multilingual support and a focus on direct manufacturer sourcing to offer competitive pricing and quality products. Technically, the site uses a CMS named Verskis and integrates modern marketing and analytics tools such as Google Tag Manager, Cookiebot, and MailerLite, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS, employs standard security headers, and provides a comprehensive cookie consent mechanism compliant with GDPR. However, the absence of WHOIS data and explicit contact information on the site limits full verification of domain legitimacy and business transparency. Overall, the site is well-structured, secure, and privacy-conscious but would benefit from enhanced transparency and published security policies.

SIA Perfecto is a Latvian company specializing in the production of natural ingredient-based food products since 2011. Their product portfolio includes snacks such as corn sticks, seed delicacies, fiber products, flourless cookies, powders, syrups, dried fruits, crackers, protein cookies, and oils. The company targets general consumers interested in healthy and natural food options and maintains an online presence with links to an e-store partner site. Technically, the website is built on WordPress, utilizing modern front-end libraries like Swiper.js and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, the site uses HTTPS with a good SSL configuration but lacks visible security headers and privacy/cookie policies, which are areas for improvement. No WHOIS data was available due to query limits, but the website content and branding suggest a legitimate small business. Overall, the website scores moderately well in content quality, technical implementation, and business credibility but needs enhancements in privacy compliance and security best practices.

D

Domini Leather

dominileather.com

71

Domini Leather operates a professional e-commerce website specializing in Italian leather bags for men and women. The company offers a wide range of products including handbags, backpacks, briefcases, and wallets, targeting consumers seeking quality leather goods. The website is well-structured with multilingual support and features a modern design optimized for desktop and mobile users. Technically, the site is built on WordPress with WooCommerce and employs various marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Security measures include HTTPS and domain locking, though DNSSEC is not enabled and no explicit security or privacy policies are published. Overall, the site demonstrates a solid digital presence with room for improvement in compliance documentation and DNS security.