Security Directory

E

Elva valla haridus- ja kultuuriosakond

elvaraamatukogud.ee

39

Elva valla raamatukogud is a local government cultural and educational platform serving the Elva municipality in Estonia. The website provides information about local libraries, events, news, and instructions for using book lockers. It targets local residents and library users, operating as a public service to promote cultural engagement and library cooperation. The site is modest in scale, reflecting a small-sized government entity with a focus on community services. Technically, the website is built on WordPress CMS, utilizing common libraries such as jQuery, Modernizr, and LazySizes for responsive images and feature detection. The site is hosted under the registrar Zone Media OÜ, with a domain age consistent with the business history. Performance is moderate with good mobile optimization and basic accessibility and SEO features. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers and formal security policies. No privacy or cookie policies are present, which is a compliance gap especially under GDPR. The site uses Google Analytics for tracking without visible consent mechanisms. Contact information is limited to an official email and physical address, with no phone numbers or incident response contacts. Overall, the website is trustworthy and professionally maintained for its purpose but requires improvements in privacy compliance, security headers, and user data protection policies to enhance its security posture and regulatory adherence.

I

Itula Oy

itula.fi

59

Itula Oy is a Finnish company specializing in energy-efficient heating and cooling systems, including innovative ceiling radiant panels and floor heating solutions. Established in 1999, Itula holds a strong market position as a pioneer in its sector within Finland, offering both products and expert consulting services from project planning to implementation. The company emphasizes energy efficiency and indoor climate quality, targeting business clients in construction, industrial, and residential markets. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating a mature digital presence. Security measures include HTTPS, reCAPTCHA, and a comprehensive cookie consent mechanism, though additional security headers and policies could enhance protection. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a credible and established business.

V

Veinitee.ee

veinitee.ee

40

Veinitee.ee is a small Estonian hospitality business focused on promoting local wineries and wine tourism through a collaborative network of producers. The website serves as a portal to explore various wine routes and wineries across Estonia, targeting wine enthusiasts and tourists. The business is relatively new, founded in 2022, and leverages modern web technologies including WordPress with the Divi theme and Yoast SEO for content management and search optimization. The site integrates Google Tag Manager and Analytics for visitor tracking but lacks visible privacy and cookie policies, which impacts compliance. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but could be improved with enhanced security headers and incident response information. Overall, the website is professionally designed with good content relevance and navigation, though privacy compliance and explicit contact details could be enhanced to improve trust and regulatory adherence.

Talsu Kultūras centrs is a local cultural institution based in Talsi, Latvia, focused on organizing and promoting cultural events, exhibitions, and community activities. The website serves as an information hub for upcoming events and cultural programs, targeting residents and visitors interested in local culture and amateur arts. The business model is that of a public cultural center, supporting cultural policy implementation and community engagement. Technically, the website is built on WordPress 6.8.1 with common plugins and uses Google Tag Manager for analytics. The site is moderately optimized for mobile and SEO but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and no visible privacy or cookie policies, which impacts compliance and user trust. WHOIS data could not be retrieved, limiting domain legitimacy verification. Overall, the site is functional and informative but would benefit from enhanced security and privacy compliance measures.

The Outdoor Industries Association (OIA) CIC is a UK-based non-profit membership organization representing over 200 entities in the outdoor recreation sector. It provides advocacy, representation, promotion, and leadership services to unite the industry with a common voice. The website is professionally designed using WordPress with modern plugins for SEO, performance, and membership management. It targets industry members, retailers, NGOs, and related organizations in the UK outdoor recreation market. The site features comprehensive content including news, events, membership information, and resources. Technically, the site uses a modern tech stack with performance optimizations and is mobile responsive. Security posture is good with HTTPS enforced and some security headers present, though explicit privacy and cookie policies are missing. Analytics tracking is implemented with Google Analytics and PixelYourSite, with moderate user tracking. WHOIS data for the queried domain 'www.theoia.co.uk' is unavailable due to domain naming rules, indicating a possible misconfiguration or incorrect domain query, which slightly impacts trust. Overall, the site is credible and professional but would benefit from enhanced privacy compliance and published security policies.

R

Running Industry Alliance

runningindustryalliance.com

44

Running Industry Alliance (RIA) is a UK and Ireland focused member-based trade organization dedicated to advancing the running industry through networking, education, and collaboration. The website presents a professional and consistent brand image, targeting businesses and professionals within the running sector. Technically, the site is built on WordPress with the Divi theme, uses modern web fonts, and integrates Google Analytics for visitor tracking. Security posture is generally good with HTTPS enabled and no obvious vulnerabilities, but lacks important security headers and published policies. The absence of WHOIS data for the domain is a notable concern, suggesting either privacy protection or data unavailability, which impacts trustworthiness. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and transparency.

R

RAMIRENT BALTIC AS

ramirent.ee

62

Ramirent Baltic AS operates as the largest tool and construction equipment rental service provider in the Baltic region, offering a comprehensive range of rental products and services including 24-hour technical support and modular factory solutions. The company is part of the Loxam Group, a recognized leader in equipment rental, which enhances its market position and credibility. The website reflects a professional and user-friendly digital presence with clear navigation and localized content tailored for Estonian customers. Technically, the website is built on a modern WordPress CMS platform with WooCommerce integration, leveraging popular libraries such as jQuery and Google Tag Manager for analytics and marketing. The site demonstrates good mobile optimization and moderate performance, with a GDPR-compliant cookie consent mechanism and structured data enhancing SEO and user experience. From a security perspective, the site enforces HTTPS and uses Cloudflare bot management cookies, indicating a proactive approach to security. However, some security headers are not explicitly detected, and there is no publicly available security policy or incident response contact, which could be improved to strengthen trust and compliance. Overall, the website presents a trustworthy and professional image with strong business credibility and compliance posture. Strategic improvements in security policy transparency and enhanced accessibility could further elevate the site's maturity and user trust.

K

Kääriku Spordikeskus

kaariku.ee

40

Kääriku Spordikeskus is an established Estonian sports training and conference center with a history dating back to 1947. It offers a wide range of services including sports facilities, accommodation, conference hosting, and leisure activities, targeting athletes, sports teams, and event organizers. The website is built on WordPress with modern technologies such as Bootstrap, jQuery, and Three.js, providing a good user experience with multilingual support and accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks published privacy and cookie policies, and security headers. Contact information is clearly provided with official registration details, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy compliance and security best practices.

E

ENGSO Youth

engsoyouth.eu

70

ENGSO Youth is a European non-profit organization dedicated to empowering youth in grassroots sports. Founded in 2002, it serves as the independent youth body of the European Sports NGOs, advocating for youth rights and inclusion in sports. The organization operates through multiple working groups and projects focusing on education, employability, sport diplomacy, health, social inclusion, and sustainable development. It maintains partnerships with prominent European and international institutions, enhancing its credibility and influence. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies such as jQuery and Font Awesome. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Performance is moderate, with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks some recommended security headers and a cookie consent mechanism, which are important for compliance and protection. No critical vulnerabilities or suspicious activities were detected. Overall, ENGSO Youth presents a trustworthy and professional online presence with a solid business model and technical foundation. Strategic improvements in privacy compliance and security hardening would further enhance its posture.

A

Anija Mõis

anijamois.ee

42

Anija Mõis is a historic manor and cultural site located in Northern Estonia, offering a wide range of services including a permanent exhibition, visitor programs, event hosting such as weddings and seminars, workshops, a manor café, and a gift shop. The website reflects a well-established cultural tourism business targeting families, tourists, and event organizers. The site is built on WordPress using the Avada theme and Fusion Builder, integrating modern plugins like Slider Revolution and Contact Form 7 with Google Analytics and reCAPTCHA for security and analytics. Security posture is good with HTTPS and reCAPTCHA, though some security headers are missing and no privacy policy page was found, indicating room for compliance improvement. Overall, the website is professional, content-rich, and trustworthy, with clear contact information and active social media presence.

Z

Zone Media OÜ

xn--puhvetitepiv-pcb.ee

43

The website 'PUHVETITE PÄIV RÕNGUST RANNUNI' serves as the official online presence for a regional Estonian food and cultural event organized by Zone Media OÜ. It provides visitors with event details, galleries, maps, and multimedia content to promote local buffets and experiences in the Rõngu and Rannu areas. The site targets local visitors and tourists interested in Estonian culinary culture. Technically, the site is built on WordPress with a modern theme and several plugins supporting multilingual content, social media integration, and cookie consent management. The infrastructure is hosted likely by Zone Media OÜ, with proper HTTPS and moderate performance. Security posture is adequate with SSL and cookie consent but lacks advanced security headers and explicit incident response or vulnerability disclosure mechanisms. Privacy compliance is partial, with a cookie policy and consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy for its niche but could improve in privacy and security transparency.

S

SA Jõgevamaa Arendus- ja Ettevõtluskeskus

jaek.ee

45

SA Jõgevamaa Arendus- ja Ettevõtluskeskus (JAEK) is a regional development and entrepreneurship support organization based in Jõgeva County, Estonia. Founded in 2010, it provides a broad range of services including entrepreneurship training, community programs, cultural and tourism promotion, and health and safety initiatives. The website serves as an information hub for local businesses, citizens, and institutions, offering news, project details, and contact information. The organization positions itself as a key regional player in supporting economic and social development.

Sihtasutus RAEK is a regional development foundation based in Rapla County, Estonia, focused on supporting balanced regional growth by providing professional development services to private, public, and third sector organizations. The website clearly targets entrepreneurs, citizen associations, youth, and local governments with a variety of support services including training, mentoring, and consulting. The organization is well-established with a domain age since 2010 and is part of a national network of county development centers. The website is built on a modern WordPress platform with common web technologies and SEO optimizations, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks advanced security headers and formal incident response or vulnerability disclosure information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site presents a professional and trustworthy image consistent with a government/non-profit entity.

P

Pärnumaa Arenduskeskus

parnukobar.ee

42

Pärnumaa Arenduskeskus is a regional development foundation established by local governments in Pärnumaa, Estonia. It focuses on balanced regional development, entrepreneurship support, youth entrepreneurship education, civil society development, public health, internal security, and international cooperation. The organization offers a variety of services including consulting for startups and existing businesses, training programs, and coordination of regional strategies and projects. The website reflects a professional and consistent brand presence with a clear focus on community and business support within the Pärnumaa region. Technically, the website is built on WordPress with Elementor and uses modern plugins such as Yoast SEO and PixelYourSite for analytics and marketing. Cookie consent is managed via CookieYes, indicating attention to privacy compliance. The site is mobile optimized and accessible, with good SEO practices implemented. However, explicit privacy policy and terms of service pages are not found, which is a compliance gap. From a security perspective, the site uses HTTPS with a good SSL configuration. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not present, and there is no visible security policy or incident response information, which could be improved to enhance trust and security posture. Overall, the website is trustworthy and professional, serving as an effective platform for the foundation's mission. Strategic recommendations include publishing explicit privacy and security policies, adding security headers, and providing clear contact information for incident response to strengthen compliance and security readiness.

H

Hiiumaa Arenduskeskus

hiiumaaarenduskeskus.ee

41

Hiiumaa Arenduskeskus is a regional development center based in Hiiumaa, Estonia, focused on supporting local entrepreneurs, NGOs, tourism clusters, and community initiatives. The organization provides consulting, training, event hosting, and facilities such as remote offices and seminar rooms. Their market position is that of a key regional coordinator and promoter of economic and social development in Hiiumaa. The website reflects a small-sized, government or non-profit entity founded recently in 2022, with a clear focus on local community and business support services. Technically, the website is built on WordPress with a modern plugin ecosystem including WooCommerce, Yoast SEO, and booking/event management tools. It uses HTTPS with good SSL configuration and integrates analytics tools like Google Analytics and Microsoft Clarity. The site is mobile optimized and SEO friendly, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and accessibility. From a security perspective, the site uses HTTPS and reCAPTCHA for form protection but lacks explicit security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and GDPR compliant, supporting user consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility compliance to strengthen trust and resilience.

V

Visit Tartu

visittartu.com

42

Visit Tartu operates as the official tourism portal for Tartu and Southern Estonia, providing comprehensive travel information, event promotion, and business-to-business services such as MICE and conference venues. The website targets tourists, event organizers, and business visitors, positioning itself as a key regional tourism authority. The business is well-established with a domain age dating back to 2005, reflecting a mature presence in the hospitality sector. Technically, the site leverages WordPress with Elementor and WP Rocket for performance optimization, and integrates social media and multimedia content effectively. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. Overall, the site is professional, user-friendly, and trustworthy, though improvements in security headers and privacy documentation are recommended.

T

The European Olympic Committees

eurolympic.org

50

The European Olympic Committees (EOC) is a well-established non-profit organization dedicated to promoting the fundamental principles of Olympism across Europe. The website serves as the official digital presence for the EOC, providing comprehensive information about its activities, events, awards, and news. It targets Olympic committees, athletes, sports organizations, and the general public interested in European Olympic sports. The organization holds a strong market position as the continental association for European Olympic Committees and organizes major sports events such as the European Games and the European Youth Olympic Festival. Technically, the website is built on a modern WordPress platform with popular plugins like WPBakery Page Builder and integrates Bootstrap for responsive design. It employs Google Analytics for traffic analysis and Mailchimp for newsletter subscriptions. The site is well-optimized for mobile devices and offers good SEO and accessibility features, though some improvements in accessibility could be made. From a security perspective, the site uses HTTPS with strong security headers and secure forms that include consent checkboxes. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit cookie consent mechanisms and does not publish a security incident response or vulnerability disclosure policy, which are areas for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. The lack of WHOIS data limits domain registration insights, but the website's branding, content quality, and external partnerships strongly support its legitimacy. Strategic recommendations include implementing cookie consent, publishing security policies, and enhancing accessibility to further strengthen the site's security posture and user trust.

Z

Zone Media OÜ

korvpall24.ee

36

Korvpall24.ee is a specialized Estonian media website focusing on basketball news, interviews, and event coverage. Operated by Zone Media OÜ since 2017, it serves a niche audience of basketball enthusiasts primarily in Estonia. The website features regularly updated content, including interviews and reports on local and international basketball events. Technically, the site is built on WordPress with Elementor and integrates modern web technologies such as push notifications (OneSignal), Google Analytics, and Facebook Pixel for marketing and analytics. The site uses HTTPS with good SSL configuration, ensuring secure data transmission. However, it lacks a cookie consent mechanism and explicit security or incident response policies, which are important for GDPR compliance and user trust. Overall, the site demonstrates a good balance of content quality, technical implementation, and business credibility, but could improve privacy compliance and security transparency.

Z

Zone Media OÜ

visitkorvemaa.ee

42

VisitKorvemaa is a regional tourism platform focused on promoting the Kõrvemaa nature area in Estonia. It aggregates local tourism services and offers authentic nature and community experiences including guided tours, outdoor activities, accommodation, and workshops. The website is built on WordPress with WooCommerce for e-commerce capabilities and uses modern plugins for SEO and marketing. The business is small, founded in 2021, and targets tourists interested in nature and active tourism. The platform integrates social media and third-party review widgets to build trust and engagement. Technically, the site is well-structured and mobile-optimized but lacks some advanced security headers and explicit privacy and cookie policies. The domain registration is consistent and transparent, supporting the legitimacy of the business.

A

Adrenaator Grupp

adrenaator.ee

40

Adrenaator Grupp operates the website adrenaator.ee, providing adventure and outdoor experiences such as canoe trips, hiking, and team events primarily in the Aidu quarry area in Estonia. The company targets families, friends, and corporate groups seeking unique adventure activities. The business is positioned as a niche local provider with a focus on experiential tourism and event hosting. The website is built on WordPress with modern SEO and GDPR compliance plugins, indicating a moderate level of digital maturity. Technical infrastructure includes Google Analytics and Tag Manager for tracking, and the site is hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is professional and trustworthy with room for improvement in security and contact transparency.

V

Visit Pärnu

visitparnu.com

51

Visit Pärnu operates a well-established regional tourism portal focused on the Pärnu area in Estonia, providing comprehensive information on accommodation, dining, events, transport, and general tourism guidance. The website targets tourists and visitors seeking detailed and localized travel information. The business is positioned as a key regional tourism information provider with a clear focus on hospitality and visitor services. Technically, the site is built on WordPress with Elementor and integrates modern plugins for search, analytics, and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, cookie consent implemented, and no critical vulnerabilities detected, though improvements in DNSSEC and security headers are recommended. Privacy compliance is robust with accessible privacy and cookie policies aligned with GDPR requirements. Overall, the site demonstrates a professional and trustworthy online presence with good user experience and content relevance.

Z

Zone Media OÜ

spoku.ee

40

Spoku.ee is a government-focused support application and processing system primarily serving Estonian municipalities and institutions. The platform offers a comprehensive suite of features including application submission, payment integration, digital contract signing, and data integration with national registries. The website is built on WordPress with modern plugins and technologies, reflecting a moderate level of digital maturity. While the technical implementation is solid and the site is mobile-optimized with good SEO practices, there is a lack of published privacy, cookie, and security policies, which impacts compliance and trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal incident response documentation. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

P

Piksel OÜ

arno.ee

41

Arno.ee is a professionally developed WordPress-based website representing Piksel OÜ's software system for managing educational services in Estonia. The platform targets municipalities, schools, kindergartens, and hobby schools, offering modules for youth work, parental consent, invoicing, and digital signing via Smart-ID. The website demonstrates a consistent brand presence and good content quality, with a clear focus on the Estonian education sector. Technically, the site uses modern web technologies including WordPress 6.8.1, Kadence Blocks, and integrates Google Analytics for user tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in security headers and incident response transparency. Privacy compliance is partial; a privacy policy is present and GDPR compliance is indicated, but cookie consent mechanisms are missing. Overall, the domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness.

S

Spordikoolituse ja -Teabe Sihtasutus

spordiinfo.ee

56

Spordikoolituse ja -Teabe Sihtasutus is an Estonian government-affiliated foundation specializing in sports education, information management, and support services. It operates key national sports registers, administers coach certification and labor cost subsidies, and coordinates EU-funded sports projects. The website is well-structured, content-rich, and primarily targeted at sports organizations, coaches, and sports employees within Estonia. Technically, the site is built on WordPress with modern frameworks like Bootstrap and includes multilingual support and cookie consent mechanisms. Security posture is solid with HTTPS and nonce usage, but lacks advanced security headers and published security policies. The domain is well-established since 2010, registered by a credible Estonian registrar consistent with the organization's profile. Overall, the site demonstrates good professionalism and trustworthiness but could improve privacy compliance and security transparency.

E

Eesti Planeerijate Ühing

planeerijad.ee

48

Eesti Planeerijate Ühing is a professional non-profit association focused on spatial planning practices in Estonia. The organization provides certification for spatial planners, organizes events such as seminars and webinars, and engages in knowledge dissemination and international cooperation. The website is well-structured, professionally designed, and regularly updated with relevant news and events, reflecting an active and credible organization within its sector. Technically, the website is built on WordPress with modern plugins including Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. The site uses HTTPS with an excellent SSL configuration, but lacks some advanced security headers and explicit privacy and cookie policies, which are areas for improvement. No blocking or WAF mechanisms interfere with content accessibility. Security posture is solid with HTTPS and no exposed sensitive data, but the absence of published incident response or vulnerability disclosure policies and security.txt reduces transparency. Privacy compliance is weak due to missing privacy and cookie policies and consent mechanisms. Business credibility is high given the consistent domain registration, professional content, and clear organizational purpose. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security transparency to align with best practices and regulatory requirements.

P

Planeerimine.ee

planeerimine.ee

46

Planeerimine.ee is an Estonian government-related informational website dedicated to spatial planning. It provides comprehensive materials including legal documents, guidelines, FAQs, and training information to support planners and stakeholders in Estonia. The site targets professionals and public officials involved in spatial planning and related regulatory processes. The business model is primarily informational and educational, positioning itself as an authoritative resource within the Estonian government sector. Technically, the website is built on WordPress 6.8.1 with a modern tech stack including jQuery, Google Analytics, and accessibility tools. The site is mobile-optimized, uses HTTPS, and implements cookie consent mechanisms. SEO and accessibility features are well integrated, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. However, some security headers are not explicitly present, suggesting room for improvement. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with cookie consent present but no visible privacy policy or terms of service pages. Overall, the website demonstrates a solid security posture and technical maturity suitable for a government informational portal. Strategic recommendations include enhancing security headers, publishing privacy and incident response policies, and maintaining up-to-date software to mitigate risks.

M

MTÜ Eesti Raamatukoguvõrgu Konsortsium

elnet.ee

46

MTÜ Eesti Raamatukoguvõrgu Konsortsium operates as a non-profit consortium dedicated to serving the public interests of Estonian libraries. The organization provides key shared services such as the E-kataloog ESTER, Eesti artiklite andmebaas, Eesti märksõnastik, and the E-varamu portaal, targeting libraries, researchers, and the general public interested in library resources. The website reflects a medium-sized, well-established entity with a consistent brand and a clear focus on education and information services within Estonia. Technically, the website is built on a modern WordPress platform using the Enfold theme and several plugins including Yoast SEO and Ajax Search Pro. It employs HTTPS with good SSL configuration and integrates Google Analytics with user consent mechanisms. The site demonstrates good mobile optimization and accessibility features, including options for visually impaired users. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies, incident response information, and vulnerability disclosure channels. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's claims, reinforcing the legitimacy of the domain. Overall, the website presents a trustworthy and professional digital presence for the consortium, with room for improvement in security transparency and incident response readiness.

T

Teeviit

teeviit.ee

56

Teeviit is an Estonian youth information portal affiliated with the Haridus- ja Noorteamet (Education and Youth Board). It provides comprehensive content on education, career, health, relationships, and social topics targeted primarily at young people. The website serves as a central hub for youth-related resources, including news, podcasts, event calendars, and partner portals such as Teeviit Juunior and Infohunt. The platform is well-positioned in the Estonian education and government sector as a trusted information source for youth.

K

Kodutütred

kodututred.ee

41

Kodutütred is a well-established Estonian youth organization affiliated with the Kaitseliit (Estonian Defence League), focusing on patriotic education and voluntary activities for girls aged 7 to 18. The website serves as an informational and engagement platform, showcasing news, events, organizational structure, and membership opportunities. The organization has a strong national presence with thousands of members and active participation across all counties in Estonia. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, FontAwesome, and Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Hosting and domain registration are consistent with the organization's location and purpose. From a security perspective, the site uses HTTPS and secure forms but lacks advanced security headers and DNSSEC, which could be improved. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulatory requirements.

S

Sillamäe Muuseum - SASIMU

sasimu.ee

43

Sillamäe Muuseum SASIMU is a recently established cultural institution in Estonia, focusing on the rich and complex history of Sillamäe through permanent exhibitions, educational programs, and innovative virtual reality experiences. The museum targets tourists, local visitors, and educational groups, offering a blend of historical insight and interactive technology to enhance visitor engagement. The website is built on WordPress and integrates common marketing and analytics tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy and cookie policies, indicating room for compliance improvement. Overall, the site presents a professional and trustworthy image aligned with its business goals.

L

Lastekaitse Liidu Lastelaagrite OÜ

lastelaagrid.eu

41

Lastekaitse Liidu Lastelaagrite OÜ is a small Estonian non-profit organization dedicated to providing educational and recreational youth camps and programs aligned with the mission of Lastekaitse Liit. The organization operates recognized youth camps such as Pivarootsi and Remniku and offers educational programs during school time. Their target audience includes children, youth, schools, municipalities, and entrepreneurs within Estonia. The website is built on a modern WordPress CMS with WooCommerce integration, supporting online interactions and registrations. The technical infrastructure includes standard web technologies and third-party services such as Google Analytics and CookieYes for consent management. Security posture is solid with HTTPS and reCAPTCHA implemented, though some security headers are missing and no formal security or privacy policies are published. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, well-branded, and trustworthy, but could improve privacy compliance and security transparency.

M

MTÜ Lastekaitse Liit

markalast.ee

41

MTÜ Lastekaitse Liit operates the 'Märka Last' web portal, a non-profit platform dedicated to promoting child rights and welfare in Estonia. The website offers a variety of content including opinion articles, podcasts, news updates, and educational resources targeting parents, children, youth, and child protection professionals. The organization is well-established with a domain registered since 2019 and maintains a consistent brand presence online. Technically, the site is built on WordPress using modern themes and plugins, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced and basic security practices in place, though improvements such as enabling DNSSEC and publishing a security.txt file are recommended. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found in the provided content. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively.

S

Sinimäe spordihoone

spordihoone.ee

43

Sinimäe spordihoone is a local sports facility based in Sinimäe, Narva-Jõesuu, Estonia, offering group training classes, gym access, sauna, and event hosting primarily targeting local sports enthusiasts. The website is built on WordPress with modern plugins and themes, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is legitimate and professionally presented but would benefit from enhanced security and compliance measures.

M

MTÜ Lastekaitse Liit

lastekaitseliit.ee

46

MTÜ Lastekaitse Liit is a well-established Estonian non-profit organization dedicated to the protection of children's rights and interests. The organization actively develops and implements child protection projects, provides expert opinions on child protection legislation, supports child and youth participation, organizes training for professionals, and offers camp services and scholarships for children and youth. The website reflects a clear mission and target audience focused on children, families, and child welfare professionals. Technically, the site is built on a modern WordPress platform with WooCommerce integration, leveraging popular plugins such as Yoast SEO, WPBakery, and Slider Revolution, indicating a mature digital infrastructure. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, it lacks published privacy and cookie policies, which impacts its privacy compliance score. Social media presence is strong with official Facebook, LinkedIn, and YouTube channels linked. Overall, the website demonstrates good professionalism and trustworthiness but would benefit from enhanced privacy and security policy transparency.

P

PÕLTSAMAA KODANIK MTÜ

poltsamaaraadio.ee

41

Põltsamaa Raadio is a small, community-driven seasonal radio station operated by local youth in the Põltsamaa region of Estonia. It broadcasts both online and on FM frequency 95.0 MHz, supported by project funding from the LEADER program to enhance broadcast reach. The website serves as a portal for live streaming, program schedules, and community engagement, targeting local listeners and supporters. The business model relies on volunteer efforts, donations, and local sponsorships. Technically, the site is built on WordPress with Elementor and several plugins for podcasting and streaming, hosted by Zone Media OÜ. The site is mobile responsive and uses modern web technologies, though performance is moderate. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and trustworthy for its community media purpose but would benefit from improved privacy and security practices.

L

Lääne-Viru Omavalitsuste Liit

virol.ee

46

Lääne-Viru Omavalitsuste Liit is a regional government association serving the municipalities of Lääne-Viru County, Estonia. The organization focuses on regional development, public health, safety, education, tourism, entrepreneurship, and cooperation among local governments. The website reflects a well-established entity with a domain registered since 2010, consistent with its government association status. The site targets local government officials, residents, and regional partners, providing information on programs, events, and strategic initiatives. Technically, the website is built on WordPress with modern plugins and technologies, including GDPR-compliant cookie consent and Google Analytics integration. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

B

BOX Exchange LLC

boxexchange.com

56

BOX Exchange LLC operates as a national securities exchange registered with the SEC, focusing on equity options trading through its BOX Options Market facility. The company positions itself as a regulated, transparent, and efficient market operator serving financial market participants. The website content reflects a professional and consistent brand image aligned with its regulatory role. Technically, the site is built on WordPress with modern libraries like jQuery and uses Cloudflare DNS services, indicating a standard but solid infrastructure. Security posture is adequate with HTTPS enabled and domain transfer protections, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Contact information is not explicitly provided, which may impact user trust and compliance. Overall, the site is credible and functional but could benefit from enhanced security and privacy features.

Z

Zone Media OÜ

omastehooldusest.ee

45

Omastehooldusest.ee is a specialized informational portal launched in 2024 by Zone Media OÜ, focused on providing knowledge, support, and hope for individuals requiring care and their caregivers in Estonia. The website offers comprehensive resources including guidance for care recipients, adult and child caregivers, community information, specialist resources, and multimedia content such as videos and podcasts. It targets a niche non-profit sector audience, aiming to support caregiving journeys with practical and emotional assistance. Technically, the site is built on WordPress with a modern theme and SEO optimizations, integrating analytics and chat support tools. Security posture is adequate with HTTPS enabled but lacks advanced DNS security and security headers. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

C

CENOS

cenos-platform.com

51

CENOS is a specialized software company providing accessible simulation tools tailored for practical engineers in industries such as induction heating, radio frequency, and wireless charging. Established in 2016, the company offers a SaaS model with a focus on intuitive use and efficient engineering processes, supported by strong customer testimonials from reputable industrial clients. The website demonstrates a professional and consistent brand presence with excellent content quality and user experience. Technically, the site is built on WordPress with modern frameworks and integrates Google Analytics and Trustpilot for marketing and feedback. Security posture is good with HTTPS enabled and domain protections, but lacks some advanced security headers and published security policies. Privacy compliance is partial, with cookie consent implemented but no explicit privacy or terms of service pages found. Overall, the site is trustworthy and well-positioned in its niche, though improvements in privacy and security transparency are recommended.

A

AirProxy AS

airproxy.eu

46

AirProxy AS is a specialized General Sales and Service Agent (GSSA) company with 30 years of experience serving passenger and cargo airlines in the Baltic region through offices in Tallinn, Riga, and Vilnius. The company focuses on providing representation and support services to airlines, positioning itself as a trusted partner in the transportation sector. The website is built on WordPress and employs standard web technologies, offering a professional and consistent user experience with good mobile optimization and navigation clarity. However, the site lacks critical privacy and cookie policies, contact information, and security headers, which impacts its overall security posture and privacy compliance. HTTPS is properly implemented, ensuring secure communication. The absence of analytics and tracking scripts suggests minimal user tracking, aligning with privacy best practices. Overall, the website reflects a credible small business with room for improvement in security and compliance documentation.

L

Le Mark Floors

lemarkfloors.co.uk

65

Le Mark Floors is a specialized manufacturer and retailer of vinyl and sprung dance floors, serving professional dance schools, TV and film studios, theatre productions, and event organizers. With over 25 years of industry presence, the company has established a strong reputation for quality and reliability, supplying floors used by prestigious clients such as the Royal Ballet School and major TV productions. Their product range includes various dance floors tailored to specific styles, custom printed floors, and installation accessories. The website reflects a professional and well-maintained digital presence, leveraging WordPress with modern plugins and analytics tools to optimize user experience and marketing efforts. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data due to domain registration anomalies slightly reduces trust but does not detract from the evident legitimacy of the business. Overall, Le Mark Floors presents a credible and professional online presence aligned with its business operations.

W

Webware

webware.ee

46

Webware OÜ is an established Estonian technology company specializing in comprehensive and flexible information and document management solutions through its flagship platform, WebDesktop. With over 23 years of experience, Webware serves a broad client base including major organizations in Estonia and Northern Europe, positioning itself as a market leader in the info management sector. The company offers a range of services including software analysis, development, hosting, training, and workflow and risk management, targeting both private and public sector organizations. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support.

I

Intuizi

intuizi.com

51

Intuizi is a technology company specializing in predictive consumer intelligence by leveraging large quantitative models and anonymized consumer data to generate actionable insights. Their platform, the Anonymous Knowledge Graph (AKG), enables businesses to analyze de-identified consumer behavior across digital and physical environments, supporting adtech, marketing, and data monetization efforts. The company positions itself as a privacy-conscious data analytics provider with a focus on compliance and innovation. Technically, the website is built on WordPress with Elementor and integrates modern analytics and marketing tools such as Google Analytics and HubSpot. The site is well-structured, mobile-optimized, and professionally designed, reflecting a mature digital presence. Security-wise, the site uses HTTPS and includes some security best practices but lacks explicit security headers and incident response information, which could be improved. The absence of WHOIS data for the domain is a notable anomaly that impacts domain trustworthiness. Overall, Intuizi presents a credible business with strong technical and content quality but should address domain registration transparency and enhance security policies.

C

Confido

confido.ee

41

Confido is a prominent Estonian medical center offering over 2500 healthcare services including preventive care, primary and specialist medical services, surgical and rehabilitation treatments, and aesthetic medicine. The company operates multiple physical clinics across Estonia and provides digital health services such as a digital clinic and online booking. The website is multilingual, targeting Estonian, English, and Russian speakers, reflecting a broad target audience within Estonia. The business model focuses on comprehensive healthcare delivery with both in-person and digital service channels, positioning Confido as a leading private healthcare provider in the region. Technically, the website is built on WordPress with modern plugins like Yoast SEO and WPML for multilingual support. It uses popular JavaScript libraries such as jQuery, Fancybox, and Owl Carousel for enhanced user experience. The site integrates Google Tag Manager and Facebook Pixel for analytics and marketing, and employs a cookie consent mechanism via cookie-script.com, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, though accessibility features are basic. From a security perspective, the site enforces HTTPS with an excellent SSL configuration and uses asynchronous loading for tracking scripts to minimize performance impact. However, there is no explicit privacy policy, terms of service, or security policy pages found, nor any incident response or vulnerability disclosure information. Cookie consent is implemented, but GDPR compliance indicators are limited. No critical vulnerabilities or suspicious activities were detected in the content provided. Overall, Confido's website demonstrates a strong business presence with good technical implementation and a solid security posture, though improvements in privacy compliance documentation and security transparency are recommended. The domain registration details align well with the business claims, supporting high legitimacy and trustworthiness.

L

Lemeks Grupp

lemeks.ee

51

Lemeks Grupp is a well-established Estonian industrial group specializing in sustainable forestry, wood processing, and agriculture since 1993. The company operates with a strong focus on environmental responsibility and local capital ownership, serving both domestic and international markets with exports to 50 countries. The website reflects a mature digital presence built on WordPress, incorporating modern web technologies and compliance mechanisms such as GDPR cookie consent. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though some areas like incident response and security policy documentation could be improved. Overall, the site demonstrates good professionalism, trustworthiness, and business credibility, supporting Lemeks Grupp's market position as a leading forestry and manufacturing group in Estonia.

I

Integration Foundation

integrationconference.ee

41

The Integration Foundation operates an informational website promoting an international conference on integration scheduled for November 2025 in Tallinn, Estonia. The conference targets academics, policy-makers, and practitioners focused on integration challenges in Europe. The website serves as a platform to share event details, workshops, and research collaborations. Technically, the site is built on WordPress with a modern but basic tech stack including Bootstrap and jQuery, hosted likely by Zone Media OÜ in Estonia. The site is mobile optimized and presents content in multiple languages. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is limited to an email address and social media links. Overall, the site is professional but could improve in privacy and security transparency.

D

DragDropr

dragdropr.com

61

DragDropr is a technology company specializing in a visual drag & drop page builder that integrates seamlessly with multiple CMS and e-commerce platforms such as WordPress, Magento, Shopify, and Lightspeed. The company targets website owners, agencies, content managers, and small businesses seeking an easy-to-use content creation tool without requiring coding skills. Their market position is that of a versatile, cross-platform content builder offering both standalone and white-label solutions. The website is professionally designed, with clear navigation and comprehensive content describing their services and benefits. Technically, the site is built on WordPress with the Enfold theme and uses modern plugins and analytics tools, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies are not fully documented. The absence of WHOIS registration data is a concern for domain legitimacy, but the overall business credibility is supported by transparent contact information and active social media presence. Strategic recommendations include improving transparency around security policies, publishing vulnerability disclosure information, and enhancing WHOIS data visibility to strengthen trust.

S

Specialist VC

specialist.vc

48

Specialist VC is a venture capital fund focused on supporting early-stage technology startups primarily in Estonia, Latvia, Lithuania, Finland, Ukraine, and Belarus. The fund invests mainly in pre-seed to Series A rounds, with occasional secondary investments in later rounds. Their portfolio includes over 60 companies, many of which are recognized regional tech leaders. The website presents a professional and consistent brand image, with detailed team bios and clear contact information, positioning Specialist VC as a credible and established player in the regional VC ecosystem. Technically, the website is built on WordPress with modern plugins such as Rank Math for SEO and uses jQuery and Splide.js for interactive elements. The site is mobile-optimized and performs moderately well, with good SEO practices and accessibility features. HTTPS is enforced, ensuring secure communications. From a security perspective, the site has a solid SSL configuration but lacks some security headers and does not provide a vulnerability disclosure or incident response contact. Privacy compliance is partial, with an ESG policy page but no dedicated privacy or cookie policy pages, nor cookie consent mechanisms. Contact information is comprehensive, including multiple team emails and phone numbers. Overall, Specialist VC's website reflects a mature business with a strong market position and good technical implementation. However, improvements in privacy compliance and security best practices would enhance trust and regulatory adherence.

T

Telia Eesti AS

keila.ee

43

Keila.ee is the official municipal website for the city of Keila, Estonia, providing residents and visitors with comprehensive information about city services, news, events, and contact details. The website is managed under the domain registered by Telia Eesti AS since 2010, indicating a stable and legitimate online presence. The site targets local citizens and tourists, offering resources such as job postings, municipal announcements, and tourism information. Technically, the site is built on WordPress with Elementor and Ova Framework plugins, leveraging modern web technologies like Bootstrap and FontAwesome for design and functionality. The website demonstrates good mobile optimization and accessibility features, ensuring usability across devices.