Security Directory

F

Fokker Next Gen

fokkernextgen.com

68

Fokker Next Gen is a small, innovative company focused on designing and building a new type of eco-friendly aircraft to enable sustainable aviation for future generations. The company positions itself as a green aviation pioneer with a clear mission to eliminate kerosene use and reduce CO2 emissions. The website is professionally designed using the Squarespace platform, featuring multimedia content and partner logos to enhance credibility. Technically, the site uses modern web technologies and enforces HTTPS with HSTS, but lacks some advanced security headers and published security policies. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service. Contact information is limited to web forms, with no direct emails or phone numbers publicly available. WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy and reduces overall trust. Strategic recommendations include improving transparency with privacy and security policies, publishing incident response contacts, and verifying domain registration details.

S

SIA ESI DIGITAL

esidigital.lv

41

ESI Projekti, operated by SIA ESI DIGITAL, is a Latvian company specializing in assisting businesses to secure European Union funding for business development, equipment acquisition, website development, and digital services implementation. The company positions itself as a niche consulting and project management service provider, targeting small to medium-sized enterprises in Latvia seeking EU financial support. The website content is professional and clearly communicates the company's services and value proposition, supported by consistent branding and active social media presence. Technically, the website employs modern web technologies including JavaScript frameworks (likely React), Google Fonts, Google Maps API, and reCaptcha for security. It is mobile optimized with good SEO practices and a moderate performance profile. Security measures include HTTPS enforcement and CSRF token usage, though additional security headers and policies could enhance the security posture. From a security perspective, the site shows good baseline practices but lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious content were detected. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms, aligning with GDPR requirements. Overall, the website presents a trustworthy and professional front for a small consulting business. The absence of WHOIS data limits full domain trust assessment, but the visible business information and digital maturity suggest a legitimate operation. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

Z

ZAB Petrovs un partneri

petrovs.law

45

The website petrovs.law represents a Latvian law firm named ZAB Petrovs un partneri, providing legal services primarily in commercial, civil, and administrative law. The firm targets both Latvian and international clients and maintains a professional online presence with multilingual support. The website content is well-structured and professionally presented, reflecting a small but credible legal practice. Technically, the site is built on WordPress using common plugins such as LayerSlider, Revolution Slider, Contact Form 7, and WPBakery Page Builder. The site is served over HTTPS with a valid SSL certificate, but lacks advanced security headers and DNSSEC, which could be improved. Privacy and cookie policies are absent, indicating a gap in compliance with GDPR and related regulations. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the site demonstrates moderate technical maturity and good business credibility but requires enhancements in privacy compliance and security best practices.

B

Baltic EXPO

balticexpo.lv

52

Baltic EXPO operates a prominent event website focused on organizing the largest 3-day Christmas market in the Baltic region, held in Riga, Latvia. The event attracts over 400 traders and artisans from Latvia, Lithuania, and Estonia, offering a family-friendly environment with entertainment and workshops. The website is professionally designed using Squarespace, featuring multilingual navigation and integrated social media links, primarily Facebook. Technically, the site employs modern web technologies including Google Fonts, Google Maps API, YouTube embeds, and Google Tag Manager for analytics. Security posture is strong with HTTPS and HSTS enabled, though the absence of explicit privacy and cookie policies indicates gaps in compliance. The lack of WHOIS data due to query limits restricts domain trust verification, but the site content and branding appear legitimate and consistent with an event organizer. Overall, the site provides a good user experience with clear event information but would benefit from enhanced privacy compliance and contact transparency.

S

Svydis

svydis.lv

39

Svydis is a Latvian company specializing in industrial and automotive painting solutions, representing over 30 leading brands in the painting industry. Their website demonstrates a solid market position as a distributor and service provider for painting materials and equipment, targeting both industrial clients and automotive professionals. The site is built on Drupal 7 with modern front-end technologies like Bootstrap and jQuery, and integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar, indicating a mature digital presence. Security-wise, the website uses HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security policies. The absence of WHOIS data limits domain trust verification, but the website content and contact information suggest a legitimate and professional business. Overall, the site is well-structured, user-friendly, and compliant with GDPR requirements, making it a reliable platform for its target audience.

H

Heidelberg Materials Latvija Betons SIA

betonsplus.lv

40

Betons+ is a Latvian concrete and cement supplier operating under Heidelberg Materials Latvija Betons SIA, part of the global Heidelberg Materials group. The company offers ready-mix concrete products with online ordering and delivery services targeting small and medium construction businesses and private customers in Latvia. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive product information. Technically, the site runs on WordPress with common plugins and integrates Google services for analytics and advertising. Security posture is good with HTTPS enabled and no critical vulnerabilities detected, though minor PHP warnings and lack of explicit security headers suggest room for improvement. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms. Overall, the site presents a trustworthy and professional business presence with moderate technical maturity and good compliance.

B

BRALU ALUS

bralualus.lv

53

BRALU ALUS is a Latvian e-commerce retailer specializing in the sale of beer and related beverages. The website targets adult consumers, implementing an age verification popup to restrict access to users 18 years or older. The business operates primarily in the retail sector, offering a variety of popular beer brands and related products through an online store with delivery options. The company maintains an active social media presence on Facebook and Instagram, enhancing customer engagement and brand visibility. Technically, the website is built on the Tilda CMS platform, utilizing Tilda's blocks, forms, and cart functionalities. The site employs modern web technologies including HTML5, CSS3, and JavaScript, and is hosted on Tilda's CDN infrastructure. Mobile optimization is good, and the site features a responsive design with video backgrounds and interactive product listings. However, accessibility features are basic, and SEO optimization is at a fundamental level. From a security perspective, the site uses HTTPS as indicated by resource URLs, but no explicit security headers such as CSP or HSTS were detected in the provided data. The presence of an age verification mechanism is a positive control for compliance with alcohol sales regulations. No advanced WAF or bot protection mechanisms were identified, and no sensitive data exposure was found in the HTML content. Privacy and cookie policies are absent, indicating a gap in compliance with GDPR and related privacy regulations. Overall, the website presents a moderate security posture with room for improvement in privacy compliance and security best practices. The lack of WHOIS data limits the ability to fully assess domain legitimacy and registration consistency. The business appears legitimate and focused on a niche retail market in Latvia. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and improving accessibility and SEO to strengthen trust and compliance.

S

SIA Glamping Priedes

priedesglamping.lv

47

Glamping Priedes is a small hospitality business based in Latvia offering nature-centric glamping accommodations with three well-equipped cabins featuring private river access and leisure amenities such as hot tubs, grills, and water sports equipment rentals. The website is built on WordPress with a modern tech stack including Yoast SEO and Google Maps integration, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and secure forms, though lacking some advanced security headers and published policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy, targeting leisure travelers seeking a comfortable outdoor experience near Riga.

Z

Home

zirgs.lv

52

The website www.zirgs.lv is a minimal portal built using the Softr platform, integrating Airtable as a backend data source. The site features basic navigation with a single image and lacks substantive business content or contact information. The technical infrastructure leverages modern JavaScript libraries including jQuery, Bootstrap, Font Awesome, and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar, indicating a moderate level of digital maturity. Security posture is moderate with HTTPS implied but no explicit security headers detected, and no privacy or cookie policies are present, which is a compliance concern. The absence of WHOIS data due to query limits restricts domain legitimacy assessment, though the site appears legitimate based on content and technology use. Overall, the site scores moderately on AI evaluation, with recommendations to improve privacy compliance, security headers, and business transparency.

Hermes Invest is a medium-sized real estate company based in Liepaja, Latvia, operating since 2016. The company specializes in renting and managing a diverse portfolio of real estate properties including multifunctional premises, offices, land plots, and accommodations primarily targeted at business clients and individuals seeking property in the city center. The website reflects a professional and consistent brand image with clear contact information and detailed property listings. Technically, the site is built on Joomla CMS using standard libraries such as jQuery and Bootstrap, with integration of Google Analytics and Google Maps API for user tracking and location services. Security posture is moderate; HTTPS is used but no explicit security headers were detected, and the Google Maps API key is exposed without visible restrictions. Privacy and cookie policies are absent, indicating a gap in compliance with GDPR and related regulations. WHOIS data could not be retrieved due to query limits, limiting domain trust assessment. Overall, the website is functional, informative, and safe for general audiences but would benefit from enhanced security and privacy measures.

M

Masterchem

masterchem.lv

36

Masterchem.lv is a Latvian-based chemical product manufacturer and supplier specializing in industrial chemicals, solvents, and related products. The company targets markets in Scandinavia, the Baltic states, and Europe, offering services including repackaging, transportation, and storage. The website is a professionally designed e-commerce platform built on WordPress and WooCommerce, supporting multiple languages (Latvian, English, Russian) to cater to its regional audience. The product catalog is comprehensive and well-structured, indicating a mature digital presence. Technically, the site uses modern plugins and SEO tools, with Google Analytics integrated for user tracking. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies, which are critical for GDPR compliance. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures.

C

ChargePoint, Inc.

chargepoint.com

61

ChargePoint, Inc. operates one of the world's largest electric vehicle (EV) charging networks, providing hardware, software, and services to businesses, fleets, partners, and individual drivers. The company has a strong market position as a pioneer in EV charging solutions since 2007, targeting multiple sectors including energy and transportation. Their website reflects a mature digital presence with comprehensive content, regional localization, and a professional design that supports their business objectives. Technically, the website is built on Drupal CMS and integrates modern technologies such as Google Maps API, Google Tag Manager, and OneTrust for cookie consent. The site is mobile-optimized, accessible, and SEO-friendly, indicating a high level of digital maturity. Security practices include HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit incident response contacts are not evident. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR compliance indicators. However, the WHOIS data is unavailable or protected, which slightly reduces transparency but is not uncommon for large enterprises. Overall, ChargePoint's website and digital infrastructure demonstrate a high level of professionalism, security, and compliance suitable for an enterprise in the energy and transportation sectors. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and providing explicit incident response contacts to further strengthen trust and security posture.

Š

šuuna

suuna.lv

45

šuuna.lv is a Latvian real estate business specializing in customizable modular homes designed to grow with families. The company offers tailored interior and exterior design services and emphasizes flexibility in home expansion. The website is professionally designed using WordPress with the Avada theme and integrates interactive elements such as a chat widget and Google Maps. Contact information is clearly provided, supporting customer engagement. However, the site lacks visible privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the site presents a trustworthy and professional image but would benefit from enhanced privacy and security transparency.

T

Trago

trago.lv

54

Trago is a Latvian-based multifunctional logistics company specializing in cargo transportation across Europe. The company offers a broad range of services including cargo transport, cargo organization, customs services, and warehouse management. The website presents a professional image with clear service descriptions, client testimonials, and partner logos, indicating a stable market presence in the transportation sector. Founded in 2015, Trago targets businesses requiring reliable logistics solutions with a personalized approach to client needs and routes. Technically, the website is built on WordPress with common plugins and integrates Google Maps for location display. The site is mobile-optimized and uses HTTPS with Google reCAPTCHA v3 for bot protection. However, the absence of visible privacy and cookie policies and lack of security headers indicate areas for compliance and security improvement. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security hardening.

S

SIA Secure Solutions

securesolutions.lv

39

SIA Secure Solutions is a Latvian company specializing in the design, installation, programming, maintenance, and repair of security systems for both legal entities and private individuals. Their services include alarm systems, access control, video surveillance, notification systems, and fire safety systems, supported by recognized brands. The company targets a local market with a focus on comprehensive security solutions. Technically, the website is built on WordPress using the Avia Framework and includes standard libraries such as jQuery and MediaElement.js. The site is mobile-optimized and has moderate performance but lacks advanced SEO and accessibility features. Security-wise, the site uses HTTPS but lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No contact emails or phone numbers are explicitly listed, which may hinder user trust and communication. Overall, the website is functional and professional but requires improvements in security, privacy compliance, and contact transparency to enhance trust and regulatory adherence.

Ata Kronvalda fonds is a Latvian non-profit foundation dedicated to fostering youth talent in science and research. The organization provides scholarships, awards, and organizes educational events to support students, educators, and researchers. The website reflects a well-established entity with a consistent brand and a clear mission focused on education and scientific development in Latvia. The foundation maintains an active online presence with regular news updates and social media integration, targeting students, teachers, and supporters of youth scientific talent. Technically, the website is built on WordPress 5.6.14, utilizing common libraries such as jQuery and Scriptaculous, along with social media SDKs and Google Maps API. The site is moderately optimized for performance and mobile use, though some resources are loaded over HTTP, which may cause mixed content warnings. Accessibility and SEO optimizations are basic but functional. From a security perspective, the site uses HTTPS but lacks important security headers and serves some resources insecurely. No critical vulnerabilities or exposed sensitive data were detected, but improvements are recommended to enhance security posture. Privacy compliance is weak, with no visible privacy or cookie policies, which could pose regulatory risks. Overall, the website is trustworthy and professional, supporting a legitimate educational non-profit. However, it would benefit from enhanced security measures and improved privacy compliance to better protect users and align with best practices.

Karfeļu Banda is a small Latvian culinary brand specializing in oven-baked potatoes with various fillings and spices. The company operates primarily in the hospitality sector, participating in local events and offering a focused menu of potato dishes and beverages. Their website is built on WordPress, utilizing popular plugins for content management, forms, and cookie compliance. The site is well-structured, mobile-optimized, and provides clear contact information including phone, email, and physical location with an embedded Google Map. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA on forms, though additional security headers could improve defenses. Privacy compliance is addressed with a cookie consent banner and a privacy policy page in Latvian. WHOIS data could not be retrieved due to query limits, limiting domain registration trust verification. Overall, the website presents a professional and trustworthy image suitable for its market niche.

S

SIA Liepājas Tarzāns

tiklutornis.lv

42

Tīklu Tornis is a Latvian-based recreational park specializing in rope tower climbing and outdoor entertainment activities primarily targeting families and local visitors. The business operates under SIA Liepājas Tarzāns and maintains a clear digital presence with a Latvian language website and English language option. The site provides essential business information, including contact details and social media links, supporting its legitimacy and accessibility. Technically, the website uses standard web technologies such as jQuery and Slick Carousel, with Google Maps integration for location services. While the site is mobile-optimized and performs moderately well, some technical improvements could enhance accessibility and security. Security posture is adequate with HTTPS enforced and CSRF protection, but lacks advanced security headers and uses an outdated jQuery version, which could be improved. Privacy compliance is well addressed with visible privacy and cookie policies and GDPR considerations. Overall, the website presents a trustworthy and professional front for a small hospitality business with room for technical and security enhancements.

M

MK Hair

mkhair.lv

50

MK Hair is a small, local beauty salon based in Daugavpils, Latvia, specializing in women's hairdressing services including haircuts, coloring, keratin treatments, chemical perms, and wedding hairstyles. Additionally, the salon offers professional training courses for aspiring hairdressers, positioning itself as both a service provider and educational entity within the local beauty industry. The website is built on the Tilda CMS platform, hosted on Tilda's infrastructure, and integrates third-party services such as Google Tag Manager and EasyWeek booking for online appointment scheduling. The site is well-structured, mobile-optimized, and provides clear contact information and social media links, enhancing user engagement and trust. However, the absence of privacy and cookie policies indicates compliance gaps with data protection regulations such as GDPR. Security posture is moderate with HTTPS enabled but lacking security headers and formal policies. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and security hardening.

N

NEOTEN

neoten.lv

53

NEOTEN is a Latvian company specializing in engine and turbocharger repair services for cogeneration units, with over 15 years of experience. The company operates a dedicated service station and emphasizes professionalism, confidentiality, and long-term partnerships. The website is professionally designed, mobile-optimized, and includes multiple contact methods and forms for customer engagement. Technically, the site uses WordPress with KingComposer and AjaxForm plugins, integrates Google reCAPTCHA for form security, and Google Maps for location display. Security posture is good with HTTPS and reCAPTCHA, but lacks explicit security headers and incident response information. Privacy compliance is basic with a privacy policy and cookie consent banner present. WHOIS data could not be retrieved due to query limits, limiting domain registration trust analysis. Overall, the site presents a credible and professional business presence with room for security and compliance improvements.

V

Vapify

vapify.lv

69

Vapify is a Latvian retailer and distributor specializing in disposable e-cigarettes and caffeine energy pouches. The company targets adult consumers aged 20 and above, complying with local age restrictions for tobacco-related products. Their website provides product information, store locators, and a subscription form for news updates, supported by active social media channels on Facebook, Instagram, and TikTok. The business operates primarily in the retail sector within Latvia, focusing on recognized brands in vaping and energy pouches. Technically, the website employs modern web technologies including Google Tag Manager, Google Maps API, and Cookiebot for consent management. The site is mobile-optimized with good SEO practices and uses HTTPS with secure cookies, including anti-CSRF tokens. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site demonstrates a solid baseline with HTTPS enforcement and cookie consent mechanisms. The presence of an age verification overlay aligns with regulatory compliance for tobacco products. The lack of WHOIS data limits full domain trust assessment, but the website content and business presence appear professional and legitimate. Overall, Vapify's digital presence is well-structured and compliant with privacy regulations, though improvements in security headers and transparency policies are recommended to enhance trust and security posture.

L

LatviaRivers

latviarivers.com

62

LatviaRivers is a small tourism company specializing in canoe and hiking tours in the Northeast region of Latvia. The company offers a full package of services including equipment rental, transfers, meals, and 24/7 customer support. Their market position is niche, targeting tourists interested in outdoor and nature experiences in Latvia. The website is built on WordPress with a modern tech stack including popular plugins for SEO, booking, and maps integration. The site is well designed, mobile-optimized, and provides clear navigation and relevant content. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the business appears legitimate and trustworthy with clear contact information and social media presence.

SIA Kvadrum is a Latvian construction company specializing in new building construction and reconstruction projects, emphasizing quality, professionalism, and responsibility as a main contractor. The company demonstrates a stable market presence with ISO certifications (ISO 9001, ISO 14001, ISO 45001) that indicate adherence to quality, environmental, and occupational health and safety standards. The website is built on WordPress, utilizing jQuery and Google Maps API for enhanced user experience. While the site is accessible and professionally designed, it lacks key privacy and security policies, and no WHOIS data was retrievable due to query limits, limiting full trust verification. Technically, the website employs standard web technologies but lacks modern security headers and advanced privacy compliance features. The absence of analytics and tracking scripts suggests minimal user tracking, which is positive for privacy. The site is mobile responsive at a basic level and offers clear navigation and contact information, including email, phone, and physical address. From a security perspective, the site uses HTTPS but does not implement recommended security headers such as Content-Security-Policy or HSTS, which could improve protection against common web attacks. No incident response or vulnerability disclosure information is provided, indicating an area for improvement. Overall, the site is safe for general audiences with no adult or questionable content detected. The overall risk is moderate, primarily due to missing WHOIS transparency and lack of privacy/security policies. Strategic improvements in security headers, privacy compliance, and WHOIS data availability would enhance trust and security posture significantly.

J

Jaunlazdu mājas

jaunlazdas.lv

43

Jaunlazdu mājas is a real estate project focused on providing modern, family-friendly housing in the suburban area near Riga, Latvia. The website presents a clear business model centered on apartment sales, rentals, and rent-to-own options, targeting families and individuals seeking a peaceful living environment close to the capital. The project emphasizes natural surroundings, modern infrastructure, and convenient location. Technically, the website uses a modern tech stack including jQuery, Bootstrap, Owl Carousel, and Google Maps API, with good mobile optimization and SEO practices. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks visible advanced security headers or incident response information. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, the site is professional and trustworthy, though WHOIS data is unavailable due to query limits, limiting full domain legitimacy verification.

M

Mareks Odumins

omart.lv

47

The website omart.lv is a personal portfolio site for Mareks Odumins, an artist who paints using a brush held in his mouth due to paralysis. The site primarily showcases his artwork and shares his inspirational life story. The business model appears to be centered on personal branding, art promotion, and possibly donations or sales of artwork. The website is built on WordPress using popular plugins and frameworks, indicating a moderate level of technical maturity. HTTPS is properly configured, and some security best practices like Google reCAPTCHA are implemented. However, the site lacks visible privacy and cookie policies, and no explicit contact information is provided, which impacts privacy compliance and business credibility scores. Overall, the site is safe, well-designed, and serves its purpose as an artist portfolio, but could improve in compliance and security hardening.

D

Dzilnupes

dzilnupes.lv

43

Dzilnupes.lv is a professionally developed website representing a real estate project offering modern apartments in the Pierīga region of Latvia. The business focuses on residential property development, targeting home buyers and investors seeking quality housing near natural surroundings and close to the sea. The site is branded consistently and provides clear contact information, enhancing business credibility. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO, Google Tag Manager, Facebook Pixel, and Hotjar, indicating a mature digital marketing approach. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are missing, which could be improved. The absence of WHOIS data limits domain trust verification, but the website content and technical setup suggest a legitimate small real estate business. Overall, the site is safe, well-structured, and user-friendly, with room for enhanced privacy compliance and security best practices.

S

SIA Āgenskalna Namsaimnieks

asaimnieks.lv

54

SIA Āgenskalna Namsaimnieks is a Latvian company specializing in professional property management and maintenance services primarily focused on residential multi-apartment buildings in Riga. The company manages approximately 40 properties and offers services including technical maintenance, renovation planning, and resident representation. The website is well-structured, professionally designed, and targets property owners and managers in the local market. The business model centers on providing comprehensive property management solutions with a local focus. Technically, the website is built using modern web technologies such as Next.js and React, with integration of Google Maps API for property location visualization. The site demonstrates good mobile optimization and SEO practices but lacks some accessibility features. Performance is moderate, with no major issues detected. However, there is no evidence of advanced analytics or tracking tools, indicating a minimal user tracking approach. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not provide privacy or cookie policies, which are important for GDPR compliance. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance trust and security posture. The absence of WHOIS data due to query limits limits domain registration analysis, but the website content and contact details appear legitimate and consistent with a small local business. Overall, the website presents a professional and trustworthy front for a local property management company but would benefit from enhanced privacy compliance, security best practices, and transparency measures to improve its security posture and regulatory adherence.

H

Hidronex.lv

hidronet.lv

34

Hidronet.lv is a Latvian-based e-commerce website specializing in hydraulic components and services, including pumps, filters, cylinders, motors, and valves. The site targets Latvian-speaking customers seeking hydraulic parts and 24-hour hydraulic service. The business operates as a small-scale online retailer within the manufacturing and retail sectors. The website features a professional design with clear navigation and multi-language support, primarily in Latvian, English, and Russian. Technical infrastructure includes legacy jQuery 1.6.2, Google Analytics, Google Tag Manager, and Google Maps API integration, indicating moderate digital maturity but with room for modernization and security improvements. Security posture is moderate; while HTTPS usage is implied through external scripts, no explicit security headers or HTTPS enforcement are visible, and the use of outdated JavaScript libraries presents potential vulnerabilities. Privacy compliance is basic, with a privacy policy and terms of service page present but no cookie consent mechanism detected. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the website is functional and serves its niche market but requires technical and security enhancements to improve trust and compliance.

ESTHELINE Dental Clinic is a private dental healthcare provider based in Riga, Latvia, offering high-quality dental services with a focus on personalized patient care. The website presents a professional and well-structured digital presence, leveraging WordPress CMS with modern plugins such as Yoast SEO and LeadConnector chat widget to enhance user engagement and SEO performance. The clinic targets local dental patients seeking premium dental care services. Technically, the website is well-optimized for mobile devices and provides a good user experience, although some improvements in accessibility and security headers could be made. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and cookie consent mechanisms, which are recommended for GDPR compliance. WHOIS data is unavailable due to query limits, but the website content and business information suggest legitimacy and a trustworthy operation. Overall, the site scores well in business credibility and content quality, with room for improvement in privacy compliance and technical security.

A

Aston Hotel Riga

astonhotelriga.com

61

Aston Hotel Riga is a boutique design and art hotel located centrally in Riga, Latvia, offering 54 elegantly furnished rooms and a rooftop restaurant featuring Latvian art exhibitions. The website is professionally designed using WordPress with modern technologies such as Google Tag Manager and FastBooking SDK for booking functionalities. The site is mobile optimized and includes privacy and cookie policies with consent mechanisms, reflecting good privacy compliance. Security posture is adequate with HTTPS enforced but lacks some security headers and explicit security policies. WHOIS data is missing, which reduces domain trustworthiness, but the website content and contact information appear legitimate and professional.

S

SIA Gaismas Akademija

gaismasakademija.lv

49

Gaismas Akademija is a Latvian small-sized company specializing in lighting design services, including concept development, lighting source selection, and full project realization with installation and lighting scenario setup. The company positions itself as a professional niche player with partnerships with internationally recognized lighting manufacturers, targeting architects, designers, and clients seeking expert lighting solutions. The website is built on WordPress using WPBakery Page Builder and integrates Google Maps for location display. It features a professional design with good mobile optimization and clear navigation. Security posture is moderate with HTTPS enabled but lacks security headers and formal privacy or cookie policies. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the website is professional and trustworthy but could improve compliance and security practices.

Bazaars.lv is an online retail platform specializing in building materials in Latvia, offering a wide product range and unique bargaining features. The website targets Latvian consumers and businesses seeking convenient online purchasing and delivery of construction materials. Technically, the site is built on the Bitrix CMS platform, utilizing modern JavaScript libraries such as jQuery, Select2, and Swiper, and integrates Google Analytics and Tag Manager for marketing and analytics purposes. The site demonstrates good mobile optimization and user experience with clear navigation and relevant content. Security-wise, HTTPS is used, and session tokens are managed in AJAX requests, but explicit security headers and privacy policies are missing, indicating room for improvement in compliance and security posture. The absence of WHOIS data limits domain legitimacy verification, but the website content and contact information suggest a legitimate business. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and publishing vulnerability disclosure information to improve trust and compliance.

N

Nomājam.lv

nomajam.lv

41

Nomājam.lv is a Latvian-based event equipment rental service specializing in tents, artificial plants, event furniture, and LED lighting. The company targets event organizers and individuals in Latvia, offering an online platform for browsing and renting event-related products with delivery options. The website is built on WordPress with WooCommerce and Elementor, providing a modern and user-friendly interface. The technical infrastructure includes common web technologies and external services such as Google Maps API for location display. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and vulnerability disclosure mechanisms. Privacy compliance is basic with a privacy policy and terms of service available, though no cookie consent mechanism is detected. Overall, the website presents a professional and trustworthy image for a small local business.

UNDA SIA is a Latvian company specializing in the production and retail of canned fish products, with a heritage dating back to 1907. The company offers a wide range of gourmet fish products including smoked sprats, salmon, herring, and pates, targeting consumers and retailers seeking high-quality fish delicacies. The website reflects a well-established brand with certifications such as IFS, BRC, and MSC, reinforcing its market position as a trusted fish canning expert. Technically, the website employs a moderate technology stack including jQuery, Flickity for product carousels, Google Analytics for tracking, and Cookiebot for GDPR-compliant cookie consent management. The site is mobile-optimized with good SEO practices and a clear navigation structure, though no CMS or hosting provider is explicitly identified. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms. However, it lacks visible security headers and does not provide incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected, indicating a generally sound security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to further strengthen security and trust.

J

JANIS BUEVICS DESIGN

janisbusevicsdesign.eu

40

The website janisbusevicsdesign.eu represents a small design business currently under redevelopment, featuring a coming soon page with a countdown timer and a contact form for email notifications. The business appears to be based in Latvia and targets a general audience interested in design services. The site uses WordPress CMS with Elementor and common frontend libraries such as Bootstrap and jQuery, hosted via Namecheap. The technical infrastructure is modern but basic, with moderate performance and mobile optimization. Security posture is adequate with HTTPS enabled but lacks security headers and published security policies. Privacy compliance is minimal with no privacy or cookie policies found. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the website is functional but lacks comprehensive content and compliance documentation.

A

Austrumu Medicīnas Centrs

austrumumedicina.com

57

Austrumu Medicīnas Centrs is a healthcare provider specializing in Eastern and holistic medicine treatments located in Riga, Latvia. The center offers services for adults and children, focusing on pain management, depression, internal diseases, addictions, and nervous system disorders. The website is professionally designed using the Squarespace platform, featuring good mobile responsiveness and clear navigation. However, the absence of privacy and cookie policies indicates gaps in GDPR compliance. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy despite the professional appearance and active content. The site integrates Google Analytics and Weglot for analytics and multilingual support, respectively, and embeds a Google Reviews widget to enhance trust. Overall, the website presents a credible healthcare service but requires improvements in privacy compliance and domain registration transparency.

P

Partyfy OÜ

partyfy.eu

51

Partyfy.eu is an Estonian-based online platform specializing in booking European artists, bands, musicians, and venues for various events such as weddings and corporate parties. The platform offers a free listing for artists without exclusivity contracts, targeting event organizers and individuals seeking entertainment services across Europe. The website is built on Joomla CMS using the Gridbox website builder, integrating modern technologies such as Bootstrap, jQuery, Google Maps API, and Tidio chat for customer interaction. The technical infrastructure is moderately optimized for performance and mobile responsiveness, providing a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and CSRF tokens implemented; however, it lacks some security headers and explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. No security incident response or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency to strengthen its risk posture and user confidence.

G

Grog Pro

grogpro.lv

44

Grog Pro is a Latvian company specializing in industrial equipment maintenance, machinery repair, welding, and assembly services, offering 24/7 emergency support. The website positions the company as a local service provider targeting industrial clients needing technical and mechanical support. The business model is service-oriented, focusing on industrial and manufacturing sectors. The website content is primarily in Latvian and provides basic information about the company and its services. Technically, the website is built on WordPress using the Cherry Framework and Bootstrap for responsive design. It employs common JavaScript libraries such as jQuery and includes Google Maps API integration. The site uses Google Analytics and Google Tag Manager for tracking. Performance and mobile optimization are basic but functional. SEO and accessibility features are present but not advanced. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks important security headers like Content-Security-Policy and HSTS. There is a cookie consent banner indicating some GDPR compliance, but no detailed security or incident response policies are published. No WHOIS data could be retrieved due to query limits, limiting domain legitimacy verification. No suspicious or malicious content was detected. Overall, the website is functional and safe for general users, but improvements in security headers, privacy disclosures, and WHOIS transparency are recommended to enhance trust and compliance.

S

SIA ERBE

erbe.lv

41

SIA ERBE is a Latvian landscaping company specializing in garden design, installation, reconstruction, and automatic irrigation systems. The company emphasizes creating easy-to-maintain, sustainable gardens tailored to the Latvian climate. Their website reflects a professional and modern digital presence with clear service offerings and an integrated e-commerce platform for garden plants. Technically, the site uses modern web technologies including Google Fonts, Google Maps API, and Google reCaptcha, ensuring a secure and user-friendly experience. Security posture is solid with HTTPS and CSRF protections, though some security headers and policies could be improved. Overall, the website is trustworthy, well-branded, and compliant with privacy regulations, making it a reliable source for potential customers.

S

Sakura

sakurajurmala.lv

33

Sakura Jūrmala is a small hospitality business operating a sushi restaurant in Jūrmala, Latvia. The company offers a diverse menu including sushi sets, wok dishes, vegetarian options, and business lunches, targeting families and local customers. The website is built on WordPress with WooCommerce and Elementor, providing an e-commerce and content-rich platform for menu display and ordering. The technical infrastructure is modern and includes popular plugins and libraries, with HTTPS enabled ensuring secure communications. However, the absence of visible privacy and cookie policies and lack of security headers indicate areas for compliance and security improvement. The WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

E

E||K

ekskin.lv

51

E||K is a modern aesthetic cosmetology and apparatus cosmetology center based in Jelgava, Latvia. The company offers a wide range of skin and beauty services, focusing on harmonizing self-love and personal care with professional treatments using the latest equipment. The website reflects a small but professional business with a clear focus on quality service and customer experience. The presence of partner beauty centers and subsidiaries enhances its market reach within the Latvian beauty sector. Technically, the website is built on the Tilda CMS platform, leveraging modern web technologies and responsive design to provide a good user experience across devices. However, the site lacks comprehensive privacy and cookie policies, and no WHOIS data was available to verify domain registration details, which slightly impacts trustworthiness. Security posture is moderate with HTTPS usage but missing security headers and incident response information. Overall, the business appears legitimate and focused on delivering quality aesthetic services, but improvements in compliance and security transparency are recommended.

E

ECOWORMS

ecoworms.eu

56

ECOWORMS is a small retail business specializing in fishing bait and related fishing goods, primarily serving customers in Latvia. The company operates both an online presence and a physical store located in Riga, Latvia. Their website is built on WordPress with WooCommerce, enhanced by popular plugins such as WPBakery Page Builder and Yoast SEO, indicating a moderate level of digital maturity. The site includes a contact form protected by Google reCAPTCHA and integrates Google Maps for location display, reflecting a user-friendly and functional technical infrastructure. Security measures include HTTPS enforcement and anti-spam protections, though additional security headers and explicit privacy policies are absent. Overall, the website presents a professional and trustworthy front for a local retail business, with clear contact information and a consistent brand identity.

Castell Commerc is a small technology business specializing in the sale of computer equipment and software. The company emphasizes quality, honesty, and timely service, targeting customers seeking reliable technology solutions. The website is built on WordPress using the Divi theme and builder, featuring a professional design with clear navigation and mobile optimization. Contact information includes a physical address in London and Riga, an email address, and a contact form with captcha protection. Security posture is moderate with HTTPS enabled but lacking security headers and explicit privacy or cookie policies. No analytics or tracking scripts were detected, indicating minimal user tracking. Overall, the website is functional and business-focused but would benefit from enhanced privacy compliance and security hardening.

K

Kuldīgas komunālie pakalpojumi

kuldigasautoosta.lv

37

Kuldīgas autoosta is a regional public transportation service provider operating in the Kuldīga area of Latvia. The website offers comprehensive bus schedules for both long-distance and local routes, targeting local residents and travelers. The business is positioned as a key transportation hub in the region, operated by Kuldīgas komunālie pakalpojumi. Technically, the website is built on the SilverStripe CMS platform and utilizes common JavaScript libraries such as jQuery, Bootstrap, and Google Maps API to provide interactive features and location information. While the site is functional and provides relevant content, it lacks critical privacy and cookie policies, which impacts compliance with GDPR and other privacy regulations. Security posture is moderate with HTTPS usage implied but no explicit security headers detected, and no forms collecting sensitive data reduce immediate risk. The absence of WHOIS data due to query limits limits domain trust assessment, but the website content and presentation appear legitimate and professional. Overall, the site serves its business purpose well but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

F

FIRSTAKE SOLUTIONS SIA

freze.eu

62

FIRSTAKE SOLUTIONS SIA operates as a specialized distributor of high-quality industrial and metalworking tools, primarily serving the Baltic States market. The company offers a broad range of tooling solutions including CNC equipment, hand tools, and measurement instruments, positioning itself as a trusted partner for manufacturing businesses seeking quality and customized solutions. The website reflects a professional and consistent brand image, with clear contact information and a focus on B2B industrial clientele. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Technically, the website is built on the Squarespace platform, leveraging modern web technologies such as Google Fonts and Weglot for multilingual support. The site is mobile-optimized and performs moderately well, with proper HTTPS and HSTS security configurations. However, there are gaps in privacy compliance, as no privacy or cookie policies are present, and no incident response or vulnerability disclosure mechanisms are provided. From a security perspective, the site demonstrates good baseline practices with SSL and HSTS enabled, but lacks DNSSEC and formal security policies. No vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies, along with missing incident response contacts, represent compliance and security posture weaknesses that should be addressed to enhance trust and regulatory adherence. Overall, the website is a credible and professional digital presence for a small manufacturing sector distributor, with room for improvement in privacy compliance and security transparency to better align with industry best practices and regulatory requirements.

Z

Zīmogu birojs 703

703.lv

44

Zīmogu birojs 703 is a Latvian small business specializing in the manufacture of stamps, plaques, and promotional materials with over 25 years of experience. The company offers a range of products including Trodat stamps, engraved plaques, business cards, and printing services. Their market position is that of a local trusted provider serving businesses and individuals in Latvia. The website is built on WordPress and integrates common technologies such as Google Fonts, Google Maps API, and Slider Revolution for a professional presentation. Contact information is clearly provided, including phone, email, and physical office location, supporting business credibility. However, the absence of privacy and cookie policies indicates a gap in compliance and transparency.

K

Kukurukuku

kukurukuku.lv

45

Kukurukuku is a small hospitality business located in Jūrmala, Latvia, specializing in providing a family-friendly event venue focused on children's parties and family gatherings. The business offers a variety of services including venue rental, inflatable attractions, catering, and entertainment. The website is well-structured, mobile-optimized, and provides clear contact and reservation information, supporting a smooth customer experience. Technically, the site is built on Ruby on Rails with modern front-end libraries and integrates Google Maps and analytics services. Security posture is adequate with HTTPS and CSRF protections, though additional security headers and policies could enhance protection. Privacy and cookie policies are present and indicate GDPR compliance. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the site is safe, professional, and trustworthy for its target audience.

S

Skaidu Briketes

briquetteswholesale.com

54

Skaidu Briketes is a Latvian company specializing in the manufacture and sale of high-quality birch wood chip briquettes for heating purposes. Established in 2003, the company has built a reputation for producing eco-friendly, additive-free briquettes that are tightly compressed for efficient burning. Their market presence extends beyond Latvia to wholesale customers in several European countries. The website offers detailed product information, pricing, delivery options, and leasing services through a partner, demonstrating a mature business model focused on direct-to-consumer and wholesale sales. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Maps API, and Google reCAPTCHA to provide a responsive and interactive user experience. The site is secured with HTTPS and implements anti-spam measures on forms. However, it lacks some security headers and explicit privacy and cookie policies, which are important for GDPR compliance. Analytics and advertising tools such as Google Analytics and Facebook Pixel are used, indicating moderate user tracking. From a security perspective, the site shows good baseline practices but could improve by adding security headers and formalizing privacy and incident response policies. The absence of WHOIS data due to query limits restricts domain legitimacy verification, but the website content and business information appear consistent and trustworthy. Overall, the site is professional, user-friendly, and serves its business purpose effectively. Recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and providing clear incident response contacts to strengthen compliance and trust. These steps will improve the site's security posture and regulatory adherence, supporting long-term business credibility.

T

TCK Ltd

targalewindpark.com

49

Targale Windpark is a renewable energy project based in Latvia, representing the largest wind park in the country with 14 turbines and a total capacity of 58.8 MW. The park was inaugurated in September 2022 and produces approximately 155 GWh annually, powering over 50,000 households. The project is owned by TCK Ltd, acquired by the energy group Utilitas, and uses turbines manufactured by Vestas. The website provides detailed project timelines, environmental assessments, and investment information, targeting general public and energy stakeholders. Technically, the site is built on WordPress with common plugins and integrates Google Maps for location display. It is mobile optimized and has good SEO practices but lacks privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. No contact emails or phone numbers are explicitly provided on the homepage. The domain registration is consistent with the business timeline and shows no suspicious patterns.

D

Domino’s Pizza

dominospizza.lv

58

Domino’s Pizza Latvia website provides an online platform for ordering pizza and related food items with delivery service focused on Riga. The site features a professional design, clear navigation, and detailed product listings including promotions and combos. The technical infrastructure leverages modern web technologies such as Google Maps API, reCAPTCHA v3, Google Tag Manager, and Facebook Pixel, indicating a mature digital presence. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit privacy and cookie policies are missing, which impacts compliance. The absence of WHOIS data limits domain legitimacy verification, but branding and content strongly suggest a legitimate franchise operation. Overall, the site is functional, secure, and user-friendly but would benefit from enhanced privacy compliance and incident response transparency.