Security Directory

M

Miltton

miltton.ee

54

Miltton is an established consultancy firm founded in 2007, specializing in business, communications, and design consultancy services. The company targets organizations seeking impactful change through strategic insights, creative communications, and design thinking. Their market position is strengthened by a diverse team and international presence with subsidiaries or related sites in Europe, Finland, Sweden, Ukraine, and the USA. The website reflects a professional and modern digital presence, leveraging WordPress CMS with advanced SEO and analytics integrations such as Yoast SEO, Google Tag Manager, and Matomo. Cookie consent mechanisms and a comprehensive privacy policy demonstrate GDPR compliance and a commitment to user privacy. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements could be made by enabling DNSSEC and adding security headers. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

T

Total Risc Technology (TRT)

trt.com

66

Total Risc Technology (TRT) is a globally recognized IT managed services provider specializing in server, storage, and networking solutions. With a strong emphasis on ISO 27001 and ISO 9001 certifications, TRT delivers cost-effective, scalable IT support and maintenance services to a diverse clientele ranging from small businesses to multinational corporations. Their service portfolio includes business continuity, managed services, professional consulting, infrastructure deployment, and cloud solutions, supported by a global team of IT experts and strategic partnerships with leading technology vendors such as IBM, HP, Dell, Cisco EMC, and NetApp. Technically, the website is built on WordPress with modern plugins like Yoast SEO and WPBakery Page Builder, integrating analytics and user behavior tracking tools such as Google Analytics and Hotjar. The site demonstrates good mobile optimization and SEO practices but lacks some advanced accessibility features and explicit cookie consent mechanisms. Security posture is strengthened by HTTPS enforcement and ISO certification; however, the absence of visible security headers and incident response contact details suggests room for improvement. The domain WHOIS data is notably missing, which raises concerns about domain registration transparency and trustworthiness despite the professional online presence. This discrepancy should be addressed to enhance credibility. Overall, TRT presents as a mature and reliable IT services provider with a solid market position but could benefit from enhanced transparency and compliance features on their website.

M

MRPeasy

mrpeasy.com

69

MRPeasy is a cloud-based SaaS provider specializing in Manufacturing ERP and MRP software tailored for small manufacturers. The company offers a comprehensive suite of services including production planning, stock management, CRM, purchases, finances, and team collaboration tools. Positioned as a leading solution for small manufacturers, MRPeasy emphasizes simplicity and power in its offerings. The website reflects a professional and consistent brand image with good content quality and SEO optimization. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates advanced analytics and optimization tools like Google Analytics and Visual Website Optimizer. The site is mobile-optimized and performs moderately well, with good accessibility and SEO features. Security best practices are observed, including HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly available. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms in place. However, the absence of WHOIS registration data reduces the overall trust score, as domain legitimacy cannot be fully verified. Contact information is available, including verified company emails and social media presence, enhancing business credibility. Overall, MRPeasy presents a trustworthy and professional online presence suitable for its target market, but improvements in transparency regarding security policies and domain registration details would further strengthen trust and compliance.

M

MAINOR

mainor.ee

45

MAINOR is an established Estonian corporate group with a 50-year history, operating primarily in environment, education, healthcare, and energy sectors. The company acts as a parent entity to multiple subsidiaries and is involved in significant development projects including Estonia's third largest economic city. The website is professionally designed, multilingual, and built on WordPress with modern frontend technologies. It includes SEO optimizations and a cookie consent mechanism, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit security policies are absent. Privacy compliance is supported by a privacy policy and cookie consent, but lacks detailed data protection officer or incident response information. Overall, the site is trustworthy and credible, with room for improvement in security best practices and transparency.

MTÜ Eesti Kvaliteediühing is a non-profit organization based in Estonia focused on uniting organizations and individuals dedicated to development and quality improvement. The website serves as a platform for sharing news, events, and international quality-related activities, targeting quality professionals and organizations. The business model centers on membership and community engagement within the quality sector. The organization appears established with a domain age consistent with its founding year of 2018 and maintains a moderate market position within Estonia's quality community. Technically, the website is built on WordPress 6.5.5 using the Avada theme and integrates popular plugins such as Yoast SEO and CleanTalk anti-spam. It employs modern web technologies including jQuery and Font Awesome, and uses Google Analytics for visitor tracking. The site is served over HTTPS, indicating a secure transport layer, and shows moderate performance and good mobile optimization. SEO practices are implemented with meta tags and structured data, although accessibility features are basic. From a security perspective, the site benefits from HTTPS and anti-spam measures but lacks explicit security headers and documented security policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy and cookie policies are absent, which is a compliance gap, especially under GDPR. Incident response and vulnerability disclosure mechanisms are not evident, limiting transparency in security management. Overall, the website demonstrates a solid business credibility and technical foundation but requires improvements in privacy compliance and security policy transparency. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, enhancing security headers, and publishing incident response contacts to strengthen trust and compliance.

S

Sandman Group

sandman.ee

55

Sandman Group is a well-established wholesale distributor of consumer electronics in the Baltic region, founded in 1992 and operating the largest warehouse for home appliances in the Baltics. The company serves a broad range of partners including distributors, retail chains, and independent resellers, offering logistics, retail partnerships, and after-sales services. Their market position is strong within Estonia and the wider Baltic states. Technically, the website is built on WordPress using modern themes and plugins, with good SEO and mobile optimization. Security posture is solid with HTTPS and CAPTCHA protections, but lacks published security policies and comprehensive privacy compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security disclosures.

Metaprofit is an established Estonian training and consulting company specializing in organizational development, personnel training, and psychological services. With over 20 years of experience and a client base exceeding 500 organizations, it offers a wide range of personalized training programs and consulting services targeting both public and private sectors. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, it is built on WordPress with modern plugins and integrates analytics tools such as Google Analytics and Yandex Metrika. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

P

Prototron

prototron.ee

43

Prototron is an Estonian startup funding program established in 2012 that provides equity-free grants up to 35,000€ along with mentoring and acceleration services to innovators and startups. The program supports the development of functional prototypes and aims to foster new technology-driven businesses. The website is professionally designed using WordPress CMS and integrates common web technologies such as jQuery and Yoast SEO for optimization. It demonstrates good mobile responsiveness and clear navigation, supporting a positive user experience. Security posture is solid with HTTPS enforced and secure cookie settings, though it lacks advanced security headers and explicit privacy and cookie policies, which are areas for improvement. The domain registration is consistent with the business claims, showing legitimacy and stability. Overall, the website reflects a credible and established organization with a clear mission and professional online presence.

Best Programs is a small, non-subsidized, and non-affiliated educational service provider specializing in budget internship and experiential learning programs worldwide, with a focus on language enhancement, edutravel, NGO, and work experience. The company targets students and young professionals seeking affordable international internship opportunities, primarily operating from Spain. The website is professionally designed using WordPress CMS and incorporates modern plugins for SEO, analytics, and user engagement. It offers clear navigation, mobile optimization, and comprehensive content relevant to its audience. Security posture is solid with HTTPS enabled and cookie consent implemented, though some security headers could be improved. Privacy policies and GDPR compliance are addressed adequately. WHOIS data is unavailable due to privacy protection, which is typical for small businesses. Overall, the site presents a trustworthy and professional front with moderate technical sophistication and good business credibility.

H

Harju Elekter AS

harjuelekter.ee

49

Harju Elekter AS is a well-established Estonian industrial group specializing in the design, manufacture, and installation of electrical distribution equipment for energy, industrial, and infrastructure sectors. The company has a strong market position supported by multiple awards and contracts with major entities such as Eesti Energia and CERN. Their website reflects a mature digital presence built on WordPress with modern plugins and frameworks, offering good SEO and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the website and business demonstrate high professionalism and trustworthiness.

A

Avatud Kool

avatudkool.ee

51

Avatud Kool is an innovative primary school based in Kalamaja, Estonia, established in 2017 with a focus on multicultural and project-based learning. The school aims to develop balanced and intelligent individuals and foster a more open and stronger society. It is recognized as a nominee for the Aasta Kool 2025 award and collaborates with the City of Tallinn to open a municipal school variant. The website reflects a small-sized educational institution with a clear mission and community engagement. Technically, the site is built on WordPress with SEO and analytics plugins, hosted by a local Estonian registrar and hosting provider. The site is mobile-optimized and well-structured, offering good user experience and content relevance. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks some security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies and consent mechanisms. Contact information is not explicitly provided in the analyzed content, which may affect user trust and compliance. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

F

FullPowerBet

powerupenergytech.com

52

FullPowerBet is a small-scale online gaming content website focused on providing guides and strategies for various online games such as slots, sportsbook, casino, arcade, and toto. The website is built on WordPress and uses popular SEO plugins like Yoast and Rank Math, indicating an emphasis on search engine optimization. The technical infrastructure includes Cloudflare DNS services but lacks advanced security features such as DNSSEC and security headers. The website content is primarily in Indonesian and targets online gaming enthusiasts. However, there is a notable mismatch between the domain name 'powerupenergytech.com' and the website content, which may confuse users or reduce trust. From a security perspective, the site uses HTTPS but lacks important security headers and does not provide any privacy, cookie, or terms of service policies. No contact information or incident response details are published, which limits transparency and user trust. The WHOIS data shows inconsistencies, including a suspicious future creation date and lack of registrant details, which further impacts the domain's legitimacy score. Overall, the website demonstrates moderate technical implementation and content quality but falls short in privacy compliance and business credibility. Strategic improvements in security policies, transparency, and domain registration information are recommended to enhance trust and compliance.

I

Infobuild Oy

infobuild.ee

57

Infobuild Oy is a Finnish technology company established in 1998, specializing in business intelligence, data integration, and software services. The company offers a range of solutions including TIBCO analytics, SAP services, DataGaps DataOps, and consulting. Their market position is that of a specialized, well-established service provider catering primarily to business clients seeking advanced data and integration solutions. The website reflects a professional and consistent brand image with clear service descriptions and a focus on business customers. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, supplemented by plugins such as Yoast SEO and GDPR Cookie Compliance. Hosting is provided by Hostingpalvelu, and the site demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices are well implemented with proper meta tags and structured data. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks some recommended security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. The presence of a GDPR cookie consent mechanism indicates some level of privacy compliance, though the absence of a privacy policy page is a notable gap. No explicit security or incident response policies are published. Overall, the website and domain registration data are consistent and trustworthy, with a high legitimacy score. The main risks relate to privacy compliance and security header implementation. Strategic improvements in these areas would enhance the site's security posture and regulatory adherence.

S

Silma laseroperatsioon | KSA Silmakeskus

ksa.ee

64

KSA Silmakeskus is a specialized healthcare provider in Estonia focusing on eye laser surgery and related eye care services. The website presents a professional image with clear branding and a focus on delivering information about laser eye operations to potential patients. The business appears established since 2010, targeting individuals seeking vision correction without glasses or contact lenses. The site uses WordPress CMS with the Avada theme and integrates modern SEO and marketing tools to enhance visibility and user engagement. Technically, the site is well-structured, mobile-optimized, and employs GDPR-compliant cookie consent mechanisms, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is good, leveraging Cookiebot for consent management and linking to a comprehensive privacy policy. However, explicit contact information, terms of service, and security policies are not prominently available, which could be enhanced to improve trust and compliance. Overall, the site is trustworthy, professional, and well-positioned in its niche, with recommendations to bolster security policies and public contact channels for incident response.

The website pmt.ee represents a small manufacturing company specializing in industrial machines and structures, offering engineering, manufacturing, and assembly services. The company appears established since 2010 and targets industrial clients requiring specialized manufacturing solutions. The website is built on WordPress with basic SEO optimization via Yoast SEO plugin and uses legacy JavaScript libraries such as jQuery 1.8.3. The technical infrastructure is moderate with room for modernization and improved mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and uses outdated libraries, which could expose the site to vulnerabilities. Privacy compliance is minimal with no visible privacy or cookie policies and no consent mechanisms. Contact information is not explicitly provided on the homepage, which may affect user trust and compliance. Overall, the site is functional but requires improvements in security, privacy, and technical modernization to enhance trust and compliance.

P

Pontos

pontos.fi

54

Pontos is a Finnish family-owned investment company focusing on selective investments both domestically and internationally. The website positions the company as an established player in the investment sector with a clear business model centered on strategic asset allocation. The digital presence is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Google Analytics, Hotjar, and Cookiebot for GDPR-compliant cookie management. The site demonstrates good technical maturity with HTTPS enforcement and a responsive design, although some advanced security headers are missing. Privacy compliance is well addressed through a comprehensive cookie consent mechanism and a detailed privacy policy. However, explicit contact information and terms of service are not prominently available, which could be improved for better business credibility and user trust. Overall, the website reflects a professional and trustworthy investment firm with room for enhanced security and transparency features.

T

Trumpit Solutions OÜ

iteraction.ee

58

Trumpit Solutions OÜ is an Estonian IT service provider specializing in comprehensive IT solutions for small and medium-sized enterprises. With over 16 years of experience, the company offers a broad range of services including IT support, software development, IT security, Microsoft 365 business solutions, website development, and cloud services. The company positions itself as a reliable and experienced IT partner in the Estonian market, supported by a strong local presence and positive customer testimonials. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution, and is hosted behind Cloudflare DNS services. The site is well-optimized for SEO and mobile devices, with good design and user experience. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though some security headers are missing and no explicit incident response or vulnerability disclosure policies are published. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website reflects a professional and credible business with room for improvement in privacy and security transparency.

T

Tallinna Linnateater

linnateater.ee

43

Tallinna Linnateater operates as a cultural institution providing theatrical performances and related visitor services primarily to the Estonian audience. The website serves as an official portal for event information, ticket sales, and theatre news, positioning itself as a reputable and established player in the local media and cultural sector. The domain has been registered since 2010, indicating a stable presence in the market. The site content is professionally presented with good navigation and mobile optimization, supporting a positive user experience.

C

Cryo Transport

cryo-transport.com

55

Cryo Transport is a specialized courier service focused on the transport of cryopreserved human biological materials such as sperm, eggs, embryos, and stem cells from clinics or cryobanks to IVF clinics. The company operates in a niche segment of medical logistics, serving fertility and reproductive medicine providers. The website is built on WordPress and employs modern digital tools including Cookiebot for cookie consent, Google Tag Manager for analytics, and Tawk.to for live chat support. The technical infrastructure is standard for small to medium-sized service providers, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is supported by cookie consent mechanisms and links to third-party privacy policies, but the site lacks an explicit privacy policy and terms of service pages. Overall, the website presents a professional and trustworthy image consistent with its business focus.

S

Stockholm Independent Art Fair

supermarketartfair.com

52

Stockholm Independent Art Fair operates the Supermarket art fair, a niche cultural event focused on artist-run initiatives in Stockholm. The website provides comprehensive information about the event, including exhibitor details, tickets, talks, and publications. The business targets artists, exhibitors, and art enthusiasts, positioning itself as a key platform for independent art in the region. Technically, the site is built on WordPress with Elementor and uses modern frontend libraries, ensuring good mobile optimization and SEO. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and explicit privacy or cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

N

Nordic Hunting Club

nordichuntingclub.com

55

Nordic Hunting Club is a specialized outfitter offering guided hunting experiences in Estonia, focusing on big game and migratory birds. The company positions itself as a high-quality service provider with over 15 years of experience, targeting hunters interested in trophy hunting in Northern Europe. The website is professionally designed using WordPress and the Avada theme, with SEO optimized via Yoast plugin and enriched with structured data. The technical infrastructure includes modern JavaScript libraries and analytics tools, providing a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data is missing, raising concerns about domain legitimacy and registration consistency. Overall, the site is functional and professional but requires improvements in privacy compliance and domain registration transparency.

M

Mikroonik OÜ

mikroonik.com

48

Mikroonik OÜ is a small Estonian manufacturing company specializing in precision micro-component production with over 20 years of experience. Their website presents a professional image with clear business focus on aerospace, automotive, medical, and electronics sectors. The company holds an ISO 9001 certification, which is prominently displayed, enhancing their credibility. The website is built on WordPress with common plugins for SEO and contact forms, hosted likely by Zone Media based on DNS information. The site is mobile optimized and offers good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, but no social media presence or incident response information is found.

T

Technics in Management Transfer (TMT)

tmt-aba.com

52

Technics in Management Transfer (TMT) is a specialized consulting firm established in 1978 in Tokyo, Japan, focusing on labor and human resource consulting for multinational firms. The company offers services including personnel policy, rules of employment, staff reduction, compensation design, union relations, and training seminars. The website presents a professional image with clear service descriptions, founder information, and client testimonials, targeting businesses operating in Japan seeking HR and labor consulting expertise. Technically, the website is built on WordPress using Elementor and Yoast SEO, with modern web technologies and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks security headers and visible privacy or cookie policies, indicating compliance gaps. The absence of WHOIS data for the domain raises concerns about domain legitimacy, though the website content appears credible. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security practices.

A

A.J.Boggs & Company

ajboggs.com

73

A.J. Boggs & Company is a technology solutions provider specializing in healthcare, government, and public sector markets. Their offerings include managed hosting, eligibility management engines, search engine technology, and data interface solutions designed to improve operational efficiency and compliance. The company targets organizations requiring HIPAA-compliant and scalable technology services. The website reflects a medium-sized enterprise with a professional online presence and a focus on B2B services. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and HubSpot analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and performs adequately, though there is room for improvement in accessibility and security headers. The presence of a cookie consent mechanism and privacy policy shows awareness of privacy compliance, though GDPR compliance is not explicitly confirmed. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure. However, the lack of explicit security headers and incident response information suggests areas for enhancement. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or recent domain registration, which slightly reduces trustworthiness. Overall, the website and business appear legitimate and professional, but improvements in transparency around security policies and domain registration details are recommended to strengthen trust and compliance.

A

Astro Baltics

astrobaltics.eu

47

Astro Baltics is a well-established Nordic IT company founded in 1998, specializing in comprehensive and flexible IT solutions for businesses of all sizes. Their offerings include the NOOM economic software suite, the Cloudics cloud platform tailored for fuel stations, car washes, and retail, as well as custom software development and IT hardware sales with maintenance services. The company maintains a strong market position in Estonia and the surrounding region, supported by ISO 27001 certification and a professional online presence. Technically, the website is built on WordPress with modern plugins and SEO optimizations, providing a good user experience and mobile responsiveness. Security practices are solid, with HTTPS, reCAPTCHA, and privacy consent mechanisms in place, although some security headers could be enhanced. Overall, the site reflects a mature digital infrastructure aligned with business goals.

A

AS Emor

emor.ee

39

Kantar Emor is a reputable Estonian market research and data analytics company providing comprehensive services such as trend studies, social research, brand and communication analysis, and media research. The company targets businesses and organizations in Estonia seeking reliable data to make informed decisions. The website reflects a mature digital presence built on WordPress with modern SEO and analytics integrations, demonstrating good technical infrastructure and content management practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit incident response policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting the company's credibility in the market research sector.

Ritsu is an established Estonian manufacturer specializing in log houses, including glued laminated timber and round log houses, with nearly 30 years of experience and over 4000 buildings produced. The company targets customers valuing natural materials, good indoor climate, and quality craftsmanship. Their market position is strengthened by ISO 9001:2015 certification and exports to over 40 countries. The website is built on WordPress with modern UI libraries and SEO optimizations, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS and secure forms, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly provided, including email, phone, physical addresses, and a detailed contact form.

E

Eesti Disaini Maja / Estonian Design House

estoniandesignhouse.ee

49

Estonian Design House is a platform dedicated to promoting Estonian design and supporting local designers. The website serves as a showcase for Estonian design products and aims to connect designers with a broader audience interested in unique, locally crafted design. The business operates within a niche market focused on design enthusiasts and customers valuing Estonian cultural products. Technically, the website is built on WordPress with SEO optimization via Yoast and includes social media integration, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS, but lacks advanced security headers and explicit security or privacy policies, which could be improved to enhance trust and compliance. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security disclosures.

W

WERMO AS

wermo.ee

40

WERMO AS is an established Estonian furniture manufacturer with over 75 years of experience in crafting high-quality furniture for living rooms, home offices, and dining rooms. The company leverages traditional craftsmanship combined with modern production technologies to meet discerning customer expectations. Their website reflects a medium-sized manufacturing business targeting consumers and businesses seeking premium furniture products. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Contact Form 7, with multilingual support via WPML. The site is hosted likely by Zone Media OÜ, an Estonian registrar and hosting provider. Security-wise, the site uses HTTPS with good SSL configuration and integrates Google reCAPTCHA to protect forms. However, it lacks explicit privacy, cookie, and security policies, as well as vulnerability disclosure mechanisms, which are important for compliance and trust. Overall, the website is professional and functional but could improve its privacy and security transparency.

A

Advokaadibüroo Nordx Legal OÜ

nordxlegal.com

62

Advokaadibüroo Nordx Legal OÜ is a specialized law firm founded in 2014, focusing on technology-driven and digital businesses. Their core services include corporate transactions, data protection, privacy, cybersecurity, technology law, and intellectual property. The firm targets startups and multinational corporations within the technology sector, positioning itself as a niche legal service provider with a strong emphasis on emerging technologies. The website reflects a professional and consistent brand image with clear service offerings and active social media engagement. Technically, the website is built on WordPress using modern frameworks such as Foundation and libraries like jQuery and Slick Carousel. SEO is enhanced via the Yoast SEO plugin. The site demonstrates good mobile optimization and moderate performance. Security is well addressed through strict Content-Security-Policy headers and HTTPS enforcement, although DNSSEC is not enabled. No cookie consent mechanism or explicit security policies are published, which are areas for improvement. The security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of incident response contact details and vulnerability disclosure policies indicates room for maturity. The domain registration is consistent and legitimate, supporting the business credibility. Overall, the website scores well in professionalism, technical implementation, and security, but privacy compliance could be enhanced. Strategic recommendations include implementing a cookie consent mechanism, publishing comprehensive security and incident response policies, enabling DNSSEC, and adding terms of service to improve legal completeness and user trust.

T

TJO Konsultatsioonid

tjo.ee

52

TJO Konsultatsioonid is a leading Estonian consulting firm specializing in management systems development, strategic management, and production efficiency enhancement. The company offers a range of consulting services and training programs targeted at businesses seeking to improve operational effectiveness and comply with international standards. Their market position is strong within Estonia, supported by multiple ISO certifications and a robust client base. The website infrastructure is built on WordPress, utilizing modern plugins such as Yoast SEO and Ninja Forms, integrated with Google Analytics and Google Tag Manager for performance and user behavior tracking. The site is mobile-optimized and demonstrates good SEO practices, contributing to a positive digital maturity profile. Security posture is solid with HTTPS enforced, use of Google reCAPTCHA on forms, and indications of security plugins like Wordfence. However, some security headers are not explicitly confirmed and could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website and business present a trustworthy and professional image with no critical security issues detected. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and considering a formal incident response policy to further strengthen security and compliance.

T

TTK - Leak Detection System

ttkuk.com

70

TTK Leak Detection is a specialized manufacturer of liquid leak detection systems, focusing on water, acids, and oil leak detection for commercial and industrial applications. The company positions itself as a global leader with a strong presence in multiple international markets, offering products made in France with a notable 10-year warranty. Their target audience includes data centers, industrial facilities, airports, and other critical infrastructure sectors requiring reliable leak detection solutions. The website reflects a mature digital presence with comprehensive product information, case studies, and certifications that reinforce their market credibility. Technically, the website is built on WordPress with a modern tech stack including Google Analytics, Matomo, and Google Tag Manager for analytics and marketing. The site is well-optimized for SEO and mobile devices, with good performance and accessibility standards. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, although some advanced security headers are not detected. From a security perspective, the site demonstrates good practices but lacks explicit security policies or incident response information. The absence of WHOIS data for the domain is a notable anomaly that reduces trustworthiness from a domain registration standpoint. Despite this, the professional website, certifications, and client references suggest a legitimate and established business. Overall, the risk assessment is moderate with recommendations to enhance domain registration transparency, implement additional security headers, and publish vulnerability disclosure policies to improve trust and compliance.

O

Oy Lunden Ab Jalostaja

jalostaja.fi

64

Oy Lunden Ab Jalostaja is a well-established Finnish food manufacturing and retail company specializing in ready meals, soups, salads, and vegan products. The company emphasizes convenience for everyday consumers and sustainability in packaging. Their website reflects a strong brand presence with consistent messaging and active engagement in para-sports sponsorship, enhancing their community involvement and brand image. Technically, the website is built on WordPress with modern SEO and tracking tools such as Yoast SEO and Google Tag Manager, ensuring good digital maturity and performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, user-friendly, and compliant with GDPR requirements, supporting a high trust level for visitors and customers.

I

Inission

inission.com

66

Inission is a Swedish-based full service electronics and mechanics manufacturer specializing in providing end-to-end solutions across the complete product lifecycle. The company targets businesses and engineers requiring development, prototyping, industrialization, manufacturing, and product maintenance services. Their market position is that of a quality-focused and sustainable partner with a strong emphasis on customer satisfaction and innovation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager, hosted on DigitalOcean infrastructure, and optimized for performance and mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are absent. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by professional content and investor relations transparency. Overall, the site demonstrates a mature digital presence suitable for a medium-sized manufacturing business.

C

Cytognos, S.L.

cytognos.com

66

Cytognos, S.L. is a specialized healthcare company focused on providing clinical flow cytometry solutions, including reagents, devices, and software tailored for flow cytometer laboratories. The company leverages partnerships such as EuroFlow™ to offer advanced Next Generation Flow™ solutions, positioning itself as a niche provider in the clinical diagnostics sector. The website reflects a medium-sized enterprise with a professional digital presence built on WordPress and WooCommerce, incorporating modern plugins and SEO optimizations. Technically, the site is well-structured, mobile-optimized, and uses HTTPS with cookie consent mechanisms, though it lacks some advanced security headers and explicit privacy and terms of service pages. The absence of public WHOIS data introduces some uncertainty about domain registration transparency, but the website content and business information appear consistent and credible. Overall, the security posture is moderate with room for improvement in policy disclosures and incident response readiness.

T

TBD Pharmatech

biodiscovery.eu

52

TBD Pharmatech is a European-based Contract Development and Manufacturing Organization (CDMO) specializing in Active Pharmaceutical Ingredients, advanced intermediates, and fine chemicals production. Founded in 2021, the company positions itself as a reliable partner for pharmaceutical companies seeking development and manufacturing services. The website reflects a professional and consistent brand image with clear business focus and relevant service offerings. Technically, the site is built on WordPress with modern analytics and tracking tools integrated, including Google Analytics and Google Tag Manager. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and comprehensive security headers. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms. Overall, the site is trustworthy and credible but would benefit from enhanced privacy and security practices to align with regulatory requirements and industry best practices.

R

Rescoval

rescoval.ee

42

Rescoval is an Estonian company specializing in advertising installation services, including banner and sticker advertising, seasonal sales areas, and rental of advertising trailers across Estonia. Established in 2010, the company targets retail chains, supermarkets, and shopping centers, offering professional and rapid campaign installations. The website reflects a mature local business with consistent branding and clear service offerings. Technically, the site is built on WordPress with common plugins for SEO, forms, and sliders, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in security headers and incident response policies. Overall, the domain registration data aligns well with the business claims, enhancing trustworthiness.

N

Nordic Consult

nordicconsult.ee

40

Nordic Consult is a small Estonian corporate services provider specializing in online company registration, legal address provision, accounting, and e-Residency support. Established since 1997, it targets entrepreneurs and e-Residents seeking efficient company formation in Estonia. The website is built on WordPress with SEO and form plugins, offering a user-friendly experience with clear navigation and relevant content. Technically, the site is hosted via Zone Media OÜ and uses HTTPS with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and secure form handling but lacks important security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy and security practices.

M

Myoton AS

myoton.com

60

Myoton AS is a specialized company providing advanced digital palpation devices (MyotonPRO) for measuring muscle tone, stiffness, and elasticity. Their products serve medical professionals, sports scientists, and researchers, positioning them as a niche leader in soft tissue assessment technology. The company has a well-established online presence with a website created on a WordPress platform, optimized for SEO and mobile use, and supported by modern analytics tools such as Google Analytics and Plausible Analytics. Hosting and DNS services are managed via Cloudflare, ensuring reliable performance and security. Security posture is solid with HTTPS enforced and domain transfer protections in place, though improvements could be made by adding security headers and a cookie consent mechanism to enhance GDPR compliance. The WHOIS data confirms the domain's legitimacy with a long registration history dating back to 2004 and no privacy protection, aligning with the company's transparency. Overall, the website is professional, trustworthy, and well-suited for its target audience, with minor recommendations to improve privacy compliance and security headers.

B

BCS Auto - Baltic Car Solutions

bcsauto.ee

48

BCS Auto - Baltic Car Solutions is a well-established Estonian company specializing in long-term car rental, vehicle sales, commission sales, and automotive services since 2007. The company targets both private individuals and businesses seeking flexible and cost-effective vehicle solutions. Their market position is strong within Estonia, supported by recognition from the Transport Authority and positive customer testimonials. The website is built on a modern WordPress platform with WooCommerce and Elementor, integrating SEO and marketing tools such as Yoast SEO, Google Analytics, Microsoft Clarity, and MailerLite. Social media presence on Facebook and Instagram further supports their brand visibility. Security posture is adequate with HTTPS and no exposed sensitive data, though improvements in security headers and explicit security policies are recommended. Privacy compliance is basic with a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the website is professional, user-friendly, and trustworthy, reflecting a medium-sized transportation business with a solid digital presence.

N

Nordcrewing Group OÜ

nordcrewing.com

57

Nordcrewing Group OÜ is a specialized maritime recruitment and crew management company operating primarily in Scandinavia and Europe. Founded in 2018, the company offers qualified seagoing personnel and maritime specialists to shipowners, shipyards, and offshore operators. Their business model leverages a proprietary Applicant Tracking and Crew Management System to optimize recruitment and crew management processes, positioning them as a trusted partner in the maritime sector. The company also provides niche services such as Ice Advisory and Deep Sea Pilotage, enhancing their market differentiation. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for SEO, multilingual support, and user interaction. The site demonstrates good mobile optimization, clear navigation, and professional design. Analytics and marketing tools such as Google Analytics and Google Tag Manager are implemented with a cookie consent mechanism, reflecting a moderate level of digital maturity. From a security perspective, the site enforces HTTPS and uses clientTransferProhibited domain status to protect domain ownership. However, DNSSEC is not enabled, and there is no Content Security Policy or security.txt file, indicating areas for improvement. Privacy compliance is addressed with a privacy policy and cookie consent, but incident response and security policy details are absent. Overall, Nordcrewing presents a credible and professional online presence with solid business and technical foundations. Strategic enhancements in DNS security, security headers, and incident response transparency would further strengthen their security posture and trustworthiness.

T

Tilde.ai

tilde.ee

67

Tilde.ai is a technology company specializing in AI-driven language technologies, including neural machine translation, speech-to-text, text-to-speech, and conversational AI solutions. Positioned as a European leader, the company offers a broad portfolio of language and speech technology services targeting businesses and organizations seeking multilingual and AI-powered communication tools. The website is professionally designed, multilingual, and uses modern web technologies such as WordPress, Elementor, and various analytics and marketing tools. The technical infrastructure appears robust with hosting likely on Microsoft Azure and integration of multiple tracking and marketing services. Security posture is generally good with HTTPS enabled and domain registration protections, though improvements such as enabling DNSSEC and publishing explicit security and privacy policies are recommended. Overall, the site is accessible without WAF or blocking mechanisms, indicating good operational maturity.

E

European Hematology Association

ehaweb.org

62

The European Hematology Association (EHA) operates a professional website focused on advancing hematology knowledge, collaboration, and education within the European healthcare community. The organization is well-established, with a domain registered since 2000, and positions itself as a leading force in hematology. The website targets healthcare professionals, researchers, and clinicians interested in hematology, offering services such as knowledge sharing and community engagement. The business model is non-profit and educational in nature. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates SEO tools such as Yoast. It employs Cookiebot for GDPR-compliant cookie consent management and Google Tag Manager for analytics. The site is mobile-optimized and demonstrates good accessibility and SEO practices, although performance is moderate. Hosting is provided by Hosting Concepts B.V., and the domain registration details are consistent with the organization's identity. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent with granular user controls. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, and there is no published security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the provided content. The WHOIS data is transparent and consistent, supporting the site's legitimacy. Overall, the website presents a professional and trustworthy digital presence with strong privacy compliance and a solid security posture. Strategic improvements include enabling DNSSEC, publishing security policies, and enhancing security headers to further strengthen the security framework.

K

Kiviõli Keemiatööstus

keemiatoostus.ee

44

Kiviõli Keemiatööstus is an established Estonian company operating in the energy and chemical manufacturing sector. The website presents the company as a regional player focused on traditional energy and chemical production, targeting Estonian-speaking audiences with multilingual support for Russian and English. The business model centers on industrial manufacturing with a clear emphasis on energy and chemical products. The website content is professionally presented with good design quality and clear navigation, supporting a positive user experience. Technically, the website is built on WordPress with common plugins such as Yoast SEO and WPML for multilingual capabilities. It uses jQuery and Google Fonts, and the site is mobile optimized with moderate performance. SEO practices are well implemented, and accessibility is basic but present. The site is served over HTTPS with no detected blocking or WAF mechanisms, indicating a secure and accessible infrastructure. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, it lacks advanced security headers and does not provide explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the website's business claims, supporting domain legitimacy. Overall, the website demonstrates a solid digital presence with good privacy compliance and moderate security posture. Strategic improvements in security headers and incident response transparency would enhance trust and resilience. The site is suitable for its business purpose but could benefit from further security and compliance enhancements.

E

EveryPay

every-pay.com

54

EveryPay operates as a payment gateway service provider offering a merchant portal and risk management tools to facilitate real-time transaction tracking, refunds, and fraud prevention. The website targets merchants and e-commerce businesses primarily in Estonia and the Baltic region, supporting multiple languages including English, Estonian, Latvian, and Lithuanian. The company positions itself as a reliable regional payment service provider with a focus on merchant support and integration ease. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPML for multilingual support. It uses Uikit for styling and includes Google Analytics and Tag Manager for tracking. The site is mobile optimized and has good SEO practices, though accessibility features are basic. Performance is moderate with no major technical issues detected. From a security perspective, the site enforces HTTPS and uses secure forms with nonce tokens. However, it lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. No vulnerabilities or exposed sensitive data were found. The WHOIS data for the subdomain is unavailable, which is typical and not suspicious. Contact information is clearly provided, enhancing trust. Overall, the website demonstrates a solid business and technical foundation with moderate security posture. Strategic improvements in privacy compliance and security headers would enhance trust and compliance. The site is suitable for its target audience but could benefit from enhanced transparency and security best practices.

W

WME

wmeentertainment.com

73

WME is a globally recognized talent agency specializing in representing extraordinary artists and creators across multiple entertainment sectors including acting, music, sports, fashion, and more. The website reflects a strong market position with a comprehensive showcase of expertise areas and a clear focus on cultural impact and advocacy. The digital infrastructure is built on WordPress with modern technologies such as lazy loading, CDN delivery via Cloudfront, and advanced SEO optimizations using Yoast. The site is mobile optimized and provides a rich multimedia experience with video content and animations. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit incident response information. The absence of WHOIS registration data is a notable concern for domain legitimacy, but the professional presentation and comprehensive policies support business credibility. Overall, the site is well-constructed, user-friendly, and compliant with privacy regulations, positioning WME as a trusted leader in the talent agency industry.

O

Orbis Oy

orbis.fi

63

Orbis Oy is a Finnish company specializing in advanced data transfer solutions for various sectors including smart cities, real estate, data centers, manufacturing, defense, and telecommunications. With over 75 years of experience, Orbis positions itself as a reliable partner for developing future-proof data transfer infrastructure. The website reflects a professional and consistent brand image, targeting industrial and governmental clients with tailored solutions. Technically, the site is built on WordPress with modern plugins for SEO and analytics, and it employs a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS and no visible vulnerabilities, though additional security headers could enhance protection. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

N

Nordkalk

nordkalk.com

56

Nordkalk is a leading limestone supplier in Northern Europe, providing essential raw materials and solutions for industries such as agriculture, environmental care, steel, pulp and paper, and construction. The company emphasizes sustainability and circular economy principles, aiming to reduce carbon footprint and maximize resource utilization. Owned by UK-based SigmaRoc PLC, Nordkalk operates multiple localized domains serving different European markets. The website is built on WordPress with modern technologies and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain www.nordkalk.com raises concerns about domain registration legitimacy, though the website content and branding appear professional and trustworthy. Contact information is primarily via web forms, with no direct emails or phone numbers publicly listed. Overall, the site reflects a mature business with a strong sustainability focus but would benefit from enhanced transparency in domain registration and security policies.

A

Amstelhoorn Notariaat

amstelhoorn.nl

38

Amstelhoorn Notariaat is a specialized notarial service provider focusing on leasehold (erfpacht) matters in Amsterdam. The company positions itself as an expert with comprehensive process control, efficient service, and client communication. The website reflects a small-sized, niche business with a clear market focus on Amsterdam residents and entities requiring leasehold notarial services. Technically, the website is built on WordPress with standard SEO and analytics tools, including Google Analytics, Facebook Pixel, and Bing UET, indicating a moderate level of digital maturity. The site is mobile optimized and professionally designed, providing a good user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is basic, with no visible cookie consent mechanism or detailed privacy policy. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

E

Eesti Üliõpilaskondade Liit

eyl.ee

39

Eesti Üliõpilaskondade Liit (EÜL) is a well-established Estonian non-profit umbrella organization representing student unions nationally. It advocates for student rights, participates in policy development, and supports student representatives. The website is professionally designed using WordPress with modern plugins and provides clear contact information and social media presence. The organization also serves as the official representative for the ISIC student card in Estonia, indicating a key partnership. Technically, the site uses a modern CMS and includes SEO optimizations, but some performance and security header improvements are possible. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though terms of service and security policies are absent. Analytics tools like Facebook Pixel and Hotjar are used, with Google Analytics plugin present but not configured. Overall, the site demonstrates a good security posture but could enhance security headers and incident response transparency.