Security Directory

G

Gaismas Maģija

gaismasmagija.lv

49

Gaismas Maģija is a prominent retail chain specializing in lighting products across Latvia, boasting the largest selection of lamps and lighting solutions. The company operates both physical stores and an e-commerce platform, serving a broad customer base including consumers, designers, and wholesale clients. Their offerings include decorative and technical lighting, project development, and wholesale partnerships, positioning them as a market leader in the Latvian lighting retail sector. The website reflects a professional and consistent brand image with clear navigation and multilingual support. Technically, the website utilizes modern web technologies including Unibit CMS, jQuery, Google Maps API, and Bitrix24 CRM forms, indicating a moderate level of digital maturity. The site is mobile-optimized and incorporates cookie consent mechanisms, though some security best practices such as explicit security headers and detailed privacy policies are lacking. Analytics and marketing tools like Google Tag Manager are employed with moderate user tracking. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. WHOIS data was unavailable due to query limits, limiting domain registration trust analysis. Overall, the site appears legitimate and professionally maintained with room for security and compliance improvements. The overall risk assessment is moderate with recommendations to enhance security headers, publish privacy and security policies, and improve transparency around data protection and incident response. These steps will strengthen trust and compliance posture while supporting continued business growth.

R

RIXOIL

rixoil.eu

45

RIXOIL is a privately owned company specializing in the supply chain, logistics, consulting, financial services, and trading of oil and chemical products. The company operates strategically located storage facilities and focuses on efficient and reliable delivery of petroleum products including bitumen, paraffins, alkylbenzenes, and liquefied gases. Their market position is that of a reliable and innovative partner with strong logistics networks and financial institution relations, aiming for a leading global presence in the energy sector. The website is built on WordPress with common web technologies such as jQuery and Bootstrap, providing a professional and responsive user experience. However, the site lacks comprehensive privacy and cookie policies, and no social media or incident response contacts are provided. Security posture is basic with HTTPS enabled but missing important security headers and some API key misconfigurations. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for private companies. Overall, the site is functional and professional but could improve in security and compliance transparency.

S

SIA BAUFONDS EU

baufonds.lv

45

BAUFONDS.EU is a Latvian company specializing in the commissioning and legalization of houses and buildings, including the legalization of illegal reconstructions of summer houses, apartments, and private houses. The company coordinates all necessary specialists such as certified electricians, chimney sweeps, surveyors, architects, and others to ensure full project legalization. The website is well-structured, professionally designed, and provides comprehensive information about their services, pricing, and contact options. Customer testimonials indicate a positive market reputation. Technically, the website uses modern JavaScript libraries, Google Maps API, and multiple analytics and tracking tools, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and secure form handling, though it lacks some security headers and cookie consent mechanisms. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the website and business appear legitimate and trustworthy with room for security and privacy improvements.

C

CARGURU

oxdrive.lv

52

CARGURU is a Latvian-based car sharing service offering a convenient and cost-inclusive mobility solution. It positions itself as the first car sharing service in Latvia, targeting local residents and visitors who seek flexible transportation options. The business model is based on pay-per-minute usage with all costs such as fuel, parking, and insurance included in the fee. The website presents a professional and consistent brand image with clear contact information and social media presence, supporting its credibility in the local market. Technically, the website leverages modern web technologies including React, Google Tag Manager, Google Analytics, Facebook Pixel, and Google Maps API, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technical improvements such as adding security headers and cookie consent mechanisms could enhance compliance and security posture. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in the HTML. However, the absence of security headers and lack of published security policies or incident response contacts represent areas for improvement. The WHOIS data is unavailable due to query limits, but the overall site professionalism and business presence suggest legitimacy. No signs of malicious activity or adult content were found, and the site is safe for general audiences. Overall, CARGURU demonstrates a solid business and technical foundation with moderate security and privacy compliance. Strategic enhancements in security headers, privacy consent, and transparency around security policies would strengthen trust and regulatory adherence.

S

SIA "Liepaja Music"

pegazapagalms.lv

52

Pegaza Pagalms is a cultural venue located in the heart of Liepāja, Latvia, operated by SIA "Liepaja Music". The organization focuses on hosting concerts, artistic events, literary and musical activities, and fostering a creative community. The website reflects a small but vibrant cultural business with a strong local presence and a clear mission to support artistic expression and community engagement. The site is professionally designed with multilingual support and provides clear contact information, including phone, email, and physical addresses. However, it lacks explicit privacy, cookie, and security policies, which are important for compliance and user trust. Technically, the site is built on Webflow, uses modern web fonts, Google Maps integration, and includes interactive elements like sliders and animations. The security posture is moderate with HTTPS usage but missing security headers and formal incident response information. Overall, the site is safe, trustworthy, and well-positioned as a local cultural hub but would benefit from enhanced privacy and security disclosures.

Rīgas 2. pamatskola is a specialized primary school located in Riga, Latvia, focusing on education for students with intellectual disabilities and severe intellectual disabilities. Established in 1925, it offers both basic and professional education programs, including vocational training in areas such as hospitality, commerce, construction, and catering. The school actively participates in European educational projects like Erasmus+ and eTwinning, enhancing its educational offerings and international collaboration. The website is well-structured, primarily in Latvian, and provides clear contact information and relevant educational content targeted at students and their families. Technically, the website is built on WordPress using Oxygen and Elementor page builders, incorporating modern web technologies such as jQuery, Google Maps API, and Contact Form 7 with reCAPTCHA for form security. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some minor backend issues like PHP warnings in certain sections were detected. Security posture is adequate with HTTPS enforced and use of reCAPTCHA, but lacks advanced security headers and explicit security policies. Overall, the website presents a professional and trustworthy digital presence for the educational institution, with no signs of malicious content or security blocking. However, the absence of WHOIS data due to query limits restricts full domain legitimacy verification. Strategic improvements include fixing backend errors, enhancing security headers, and implementing explicit cookie consent mechanisms to improve compliance and security posture.

Apgādes Centrs is a Latvian-based company specializing in the manufacture and supply of professional cleaning, washing, and disinfection products. Established in 2001, it serves a diverse range of sectors including food processing, healthcare, education, transportation, and households. The company operates both B2B and B2C channels, including an online store (chemigroup.lv), and emphasizes local production and quality customer service. The website reflects a well-structured business with clear contact information and product offerings, targeting Latvian customers primarily. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Maps API, providing a moderate level of performance and mobile optimization. However, security posture is limited with no visible security headers or privacy policies, and WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site is professional and safe but would benefit from enhanced security and privacy compliance measures.

B

Barjeras

barjeras.lv

42

The website barjeras.lv represents a Latvian business specializing in the sale of automatic and mechanical barriers, gate automation, and related parking and warehouse equipment. The company targets businesses and private property owners in Latvia seeking access control and security solutions. The site features a professional design with clear navigation and product categorization, supporting an e-commerce business model focused on retail and B2B sales. The presence of social media links and live chat indicates a customer engagement focus. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, jQuery, Google Maps API, and Smartsupp Live Chat. The site is mobile-optimized and performs moderately well, though some accessibility features are basic. Security-wise, HTTPS is implied but no explicit security headers were detected in the HTML content. The site lacks visible privacy and terms of service policies, which impacts privacy compliance. No WHOIS data was available due to query limits, limiting domain legitimacy verification. Overall, the security posture is moderate with room for improvement in security headers and explicit privacy documentation. The website content is safe for general audiences, with no adult or questionable content detected. Contact information is clearly provided, enhancing business credibility. The absence of WHOIS data and privacy policies are notable gaps. Strategic recommendations include implementing comprehensive privacy and security policies, adding security headers, ensuring secure form handling, and conducting regular security audits. Enhancing transparency and compliance will improve trust and reduce risk exposure.

P

PSello

dealmen.lv

51

Dealmen.eu is a Latvian-based online marketplace platform that connects buyers and sellers across a wide range of product and service categories. The platform facilitates users to submit requests for products or services and receive offers from sellers, streamlining the purchasing process. The website supports multiple languages, targeting Baltic and European markets, and is operated by the company PSello, founded in 2019. The business model focuses on providing a user-friendly interface for buyers and sellers to interact efficiently. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, Owl Carousel, and Google Maps API for enhanced user experience and location-based services. Google Analytics is used for visitor tracking, and the site is served over HTTPS, ensuring basic transport security. However, the absence of advanced security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. From a security perspective, the site shows a moderate posture with HTTPS enabled but lacks critical security headers such as Content-Security-Policy and HSTS. There is no visible incident response or vulnerability disclosure information, and GDPR compliance appears partial due to missing cookie consent banners. The WHOIS data is not publicly available due to EURid privacy policies, which is common for .eu domains, and does not raise immediate concerns. Overall, the site is safe for general audiences with no adult or explicit content. The overall risk assessment suggests the platform is legitimate and functional but would benefit from enhanced security practices and privacy compliance measures. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, and publishing security policies to build greater trust and compliance.

A

Arenasushi

arenasushi.lv

44

Arenasushi.lv is a Latvian sushi restaurant offering a broad menu of sushi products including various types of maki, uramaki, tempura, and sushi sets, with an online ordering and delivery service targeting local customers in Riga. The website is professionally designed with good navigation and mobile optimization, leveraging modern web technologies such as Materialize CSS, jQuery, Google Maps API, and integrates advertising and analytics tools like Google Adsense, Google Analytics, and Facebook Pixel. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, though security headers and incident response information are absent. Privacy compliance is basic but present, with a cookie consent mechanism and linked privacy and terms of service pages. WHOIS data is unavailable due to query limits, but the domain appears legitimate and privacy protection is likely justified for this business type. Overall, the website presents a trustworthy and functional online presence for a small hospitality business.

V

VegaZ

vegaz.lv

41

VegaZ is a Latvian-based crew manning agency specializing in providing high-quality crew management, recruitment, and training services for various types of maritime vessels. The company targets shipping companies and seafarers, aiming to be a leading supplier of competent maritime personnel. Their services include crew selection, certification, contract management, and logistical support such as travel and visa arrangements. The website reflects a professional business with clear service offerings and certifications including ISO 9001-2015 and MLC 2006. Technically, the website is built on the Unibit CMS platform and uses a range of JavaScript libraries including jQuery 1.7.2, FancyBox, and Google Maps API. The site is mobile optimized with good navigation and content structure, though some technical debt is evident due to the use of outdated libraries. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site uses CAPTCHA on its contact form to prevent spam but lacks visible security headers and uses an outdated jQuery version with known vulnerabilities. No privacy policy or terms of service pages were found, and WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Cookie consent is implemented with a visible banner and consent mechanism. Overall, the website presents a legitimate and professional maritime crew management business but would benefit from improved security practices, updated technical components, and enhanced privacy compliance to strengthen trust and reduce risk.

T

Taksometrs.eu

taksometrs.eu

43

Taksometrs.eu is a Latvian online taxi service aggregator focused on providing fast, safe, and convenient taxi services in Riga. The platform consolidates multiple taxi companies, offering users the ability to compare prices, select vehicle classes, and order taxis online or by phone. The website emphasizes transparency, comfort, and safety, targeting residents and visitors in Riga who require reliable transportation. The business model centers on aggregating taxi services and facilitating bookings, with additional offerings such as corporate contracts and specialized services like baby taxis and group transport. Technically, the website employs a standard modern stack including jQuery, Bootstrap, Owl Carousel, Google Analytics, Yandex Metrika, and Google Maps API. The site is mobile-optimized with good navigation and content relevance. Hosting and domain registration are consistent with a legitimate Latvian business. However, there are gaps in privacy compliance, notably the absence of privacy and cookie policies and lack of consent mechanisms. From a security perspective, the site uses HTTPS and avoids exposing sensitive data but lacks important security headers and formal security policies. No incident response contacts or vulnerability disclosure mechanisms are present. Analytics and marketing tools are used moderately, with some user tracking but no explicit privacy compliance measures. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

B

BAPI

bapi.lv

9

BAPI is a transport and logistics company based in Latvia, specializing in cargo transportation, warehousing, and auto transport services. The company emphasizes reliability, efficiency, and cargo safety, targeting businesses and corporations requiring logistics solutions. The website is professionally designed using WordPress with a Yootheme theme and integrates common technologies such as jQuery, UIkit, Ninja Forms, and Google Maps API. Contact options include email, phone, and a contact form, facilitating client engagement. However, the site lacks visible privacy, cookie, and terms of service policies, which may impact compliance and user trust. Security posture is moderate with HTTPS enabled but missing key security headers and policies. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site presents a professional business front with room for improvement in privacy and security transparency.

K

Kaddex

kaddex.lv

54

Kaddex is a Latvian logistics company specializing in international freight transportation services, including full and less-than-truckload shipments, warehouse services, and specialized cargo handling such as hazardous and thermo-controlled freight. The company targets businesses requiring reliable and timely logistics solutions across Western Europe, the Baltic states, and Scandinavia. With over 15 years of industry experience, Kaddex positions itself as a trusted partner emphasizing flexibility, communication, and customer service. Technically, the website is built on WordPress using modern plugins and frameworks such as Bootstrap, jQuery, and WPBakery Page Builder. It employs SEO best practices with Yoast SEO and uses hCaptcha for form spam protection. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS and implements spam protection on forms but lacks visible security headers and published security policies. No WHOIS data was available due to query limits, which limits domain legitimacy verification. Privacy and cookie policies are not clearly presented, indicating potential compliance gaps. Overall, Kaddex's website reflects a professional and credible logistics business with room for improvement in privacy compliance and security best practices. Addressing these gaps will enhance trust and regulatory adherence.

H

Happy Auto

happyauto.lv

9

Happy Auto is a small Latvian company specializing in assisting customers with car purchases and leasing in Riga. The website is primarily in Russian and targets individuals seeking quick and reliable automotive deals. The company offers services including car purchase assistance, leasing applications, and custom car orders. Their market position is local and focused on the transportation sector. Technically, the website is built on WordPress using Elementor, with integrations such as Google reCAPTCHA v3 and Google Maps API, indicating a moderate level of digital maturity. The site includes GDPR-compliant cookie consent mechanisms and collects personal data through forms secured by reCAPTCHA. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and explicit incident response information. Overall, the website is professional and trustworthy, though WHOIS data is unavailable due to query limits, limiting full domain legitimacy verification.

S

Sudraba Lapsa

sudrabalapsa.lv

45

Sudraba Lapsa is a Latvian-based professional sound recording studio specializing in dubbing, subtitling, sound design, and advertising audio production. With over 20 years of industry experience and collaborations with major international studios, the company positions itself as a trusted regional player in media production services. The website presents a comprehensive portfolio of projects and client testimonials, reinforcing its credibility and market presence. Technically, the site is built on WordPress with common plugins for SEO and multilingual support, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, though it lacks some security headers and explicit privacy policies. The absence of WHOIS data due to query limits limits full verification of domain legitimacy. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

M

Metropolis Riga

officeriga.lv

48

OfficeRiga is a professional real estate platform focused on providing a comprehensive and verified catalog of commercial office spaces in Riga, Latvia. The platform consolidates listings from multiple properties, offering clients a single point of contact for consultation, viewing scheduling, and concierge services. The business is positioned as a trusted intermediary with over seven years of experience and partnerships with major financial institutions. Technically, the website leverages modern frontend technologies such as React and Material-UI, integrated with Google Maps for location visualization. The site is mobile-optimized and provides a good user experience with clear navigation and professional content. Security-wise, the site uses HTTPS and secure forms but lacks explicit security headers, which is an area for improvement. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms aligned with GDPR requirements. Overall, the website presents a credible and professional business presence with moderate technical maturity and a solid security posture.

A

ALLIANCE for recruitment

afr.lv

53

ALLIANCE for recruitment is a leading recruitment agency based in Latvia, specializing in personnel selection and head-hunting services. The company positions itself as the largest recruitment team in the market, offering job opportunities from top employers. Their target audience includes job seekers and employers primarily in Latvia and neighboring regions. The website is built on Drupal 7 CMS and integrates multiple third-party technologies such as Google Analytics, Facebook Pixel, and LinkedIn API to support marketing and analytics efforts. Cookie consent is implemented comprehensively, reflecting GDPR compliance. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and use of an outdated jQuery version present areas for improvement. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the website is professional, trustworthy, and well-structured for its business purpose.

F

FIRSTAKE SOLUTIONS SIA

firstake.eu

61

FIRSTAKE SOLUTIONS SIA operates as a distributor of high-quality industrial and metalworking tools, primarily serving the Baltic States. The company offers a broad range of CNC tooling, professional industrial tools, and custom solutions tailored to manufacturing needs. Positioned as a niche regional player, it leverages direct manufacturer relationships to provide specialized tooling solutions. The website is professionally designed using Squarespace, featuring multilingual support and integration with Google Maps and reCAPTCHA for enhanced user experience and security. However, the domain is newly registered in 2024, aligning with the company's recent establishment. Security posture is strong with HTTPS and HSTS enabled, but lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Overall, the business presents a credible and professional front with clear contact information and consistent branding.

T

TEHNISKĀ BĀZE SIA

ugunsdrosiba.lv

47

TEHNISKĀ BĀZE SIA operates the website ugunsdrosiba.lv, providing specialized fire safety technical services in Latvia. The company offers a range of services including fire safety inspections, security system installation and maintenance, fire extinguishing equipment sales and servicing, and practical training. With 27 years of experience, the company positions itself as a reliable local partner in fire safety compliance and equipment servicing. The website content is primarily in Latvian and targets businesses and organizations requiring fire safety solutions. The business model focuses on service provision combined with equipment sales and maintenance, supported by relevant certifications and licenses.

S

SIA 'ForteMed'

fortemed.lv

55

FORTEMED Medicīnas centrs is a healthcare provider based in Riga, Latvia, offering a wide range of medical and aesthetic services including specialist consultations, diagnostics, and rehabilitation. The website presents a professional and comprehensive overview of their services and team, targeting patients seeking quality healthcare in the region. The technical infrastructure leverages modern JavaScript libraries and analytics tools, with HTTPS enabled and cookie consent implemented, reflecting a moderate level of digital maturity. Security posture is generally good, though some security headers and explicit policies could be improved. The absence of WHOIS data limits full domain trust verification, but the website content and business information appear legitimate and consistent with a healthcare provider. Overall, the site is well-designed, user-friendly, and trustworthy for its intended audience.

Stellar Studio is a Latvian multimedia service provider specializing in photo, video, and audio production for both business and private clients. The company offers comprehensive in-house services including studio rental, decoration and prop making, and access to professional actors and artists. Their website demonstrates a professional and consistent brand presence with a portfolio showcasing their work. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics with IP anonymization, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced but lacks advanced security headers and a published privacy policy, which are areas for improvement. Overall, the website is safe, professional, and functional but would benefit from enhanced compliance and security transparency.

Baltic Būves centrs SIA is a Latvian construction and renovation company specializing in residential and commercial projects, including repair, finishing, construction works, and custom furniture manufacturing. The company has a solid portfolio of projects primarily located in Riga and surrounding areas, targeting homeowners and businesses seeking quality construction services. The website presents a professional image with clear navigation, project showcases, and client references, supporting its market position as a reputable local service provider. Technically, the website uses a traditional tech stack including jQuery 1.10.1, Google Analytics, Google Tag Manager, Facebook Pixel, and Google Maps API. While functional, the use of an outdated jQuery version and lack of modern security headers indicate areas for technical improvement. The site is moderately optimized for mobile and SEO, with basic accessibility features. From a security perspective, the site uses HTTPS and implements a cookie consent banner, but lacks visible security headers such as CSP or HSTS. No privacy policy or terms of service were found, which impacts privacy compliance. No WHOIS data was available due to query limits, limiting domain legitimacy verification. Overall, the security posture is moderate but could be enhanced by updating libraries, adding security headers, and publishing privacy and security policies. The overall risk assessment is moderate with no critical vulnerabilities detected. Strategic recommendations include improving privacy compliance, updating technical components, and enhancing security configurations to strengthen trust and protect user data.

S

SIA YAMA SUSHI

yamasushi.lv

45

YAMA sushi bar is a local sushi restaurant and delivery service operating in Daugavpils, Latvia. The website presents a clear business focus on sushi dining and delivery within the city limits, targeting local customers. The business is registered as SIA YAMA SUSHI with clear contact details and physical addresses provided, supporting its legitimacy as a small retail food service business. The website content is well organized, mobile-optimized, and includes social media links to Facebook, Instagram, and Telegram, enhancing customer engagement. Technically, the website is built on Unibit CMS and uses older versions of jQuery alongside Google Maps API and Google Analytics for tracking. While the site is functional and moderately performant, the use of outdated JavaScript libraries and lack of visible security headers indicate potential security risks. The absence of privacy and cookie policies is a notable compliance gap, especially under GDPR regulations applicable in Latvia. Security posture is moderate with HTTPS usage implied but no explicit security headers detected. No forms or direct data collection mechanisms are visible, reducing immediate risk of data leakage. However, the lack of incident response or vulnerability disclosure information limits transparency. WHOIS data could not be retrieved due to query limits, restricting domain age and registrant verification. Overall, the site is trustworthy for its business purpose but would benefit from enhanced security and compliance measures.

W

Mājas lapu izstrāde Jūsu biznesa izaugsmei, Mājas lapu izstrāde, Mājas lapu optimizācija, Interneta veikalu izstrāde, Video-projekciju pakalpojumi

webone.lv

51

Webone.lv is a small international web development company based in Latvia, specializing in website creation, SEO optimization, e-commerce development, and video projection services. Their business model focuses on delivering tailored web solutions to help clients grow their businesses. The website demonstrates a good level of technical maturity with modern frontend technologies, responsive design, and integration of analytics tools. However, the absence of explicit privacy and cookie policies, as well as security headers, indicates room for improvement in compliance and security posture. The site is accessible without any WAF or blocking mechanisms, and contact information is clearly provided, enhancing business credibility. Overall, the company presents itself professionally but would benefit from enhanced security and privacy transparency.

L

LPP SA

lppsa.com

64

LPP SA is a leading Polish retail fashion company operating multiple well-known clothing brands including Reserved, Cropp, House, Mohito, and Sinsay. The company positions itself as one of the largest Polish clothing firms and the largest in Central Europe, focusing on delivering fashion products tailored to diverse customer preferences. The website reflects a mature digital presence with comprehensive content about the company, sustainability initiatives, investor relations, and career opportunities. Technically, the site is built on WordPress with modern web technologies such as YouTube API, Google Maps API, and Cookiebot for consent management, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms, though some security headers and explicit incident response contacts are missing. WHOIS data for the domain is unavailable, which is unusual for a major corporate entity and warrants further verification. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving a broad audience interested in fashion retail and corporate information.

G

GIROLAT SIA

girolat.lv

41

GIROLAT SIA is an EU registered international trading company specializing in the supply of physical base oils, fertilizers, gasoline components, and other chemical products. Established in 2003, the company operates primarily in the energy sector, sourcing products from state-owned and private refineries across Europe, the Middle East, and Asia. Their business model focuses on international trade and logistics, with facilities in Latvia offering various distribution methods including tankers, flexi-bags, and container shipments. The website presents a professional image with clear business information and contact details, targeting business clients in the chemical and oil industries. Technically, the website is built on WordPress using Elementor and integrates Google Analytics and Google Maps APIs. The site is mobile-optimized and performs moderately well, though some accessibility features are basic. Security-wise, the site uses HTTPS and enforces SSL, but lacks important security headers and formal privacy or cookie policies, which are critical for compliance and trust. No WHOIS data was available due to query limits, which slightly reduces trustworthiness from a domain registration perspective. Overall, the security posture is moderate with room for improvement in policy transparency and security best practices. The site is accessible without WAF or blocking mechanisms, and content is safe for general audiences. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, and providing incident response and vulnerability disclosure information to enhance compliance and trust.

K

KIKIFAMSTUDIO

kikifamtattoostudio.com

62

KIKIFAMSTUDIO is a small tattoo and piercing studio based in Riga, Latvia, offering custom tattoos, expert piercings, and a selection of titanium jewelry. The business emphasizes a safe and creative environment with a team of seven specialized artists. The website is professionally designed using Squarespace, featuring clear navigation, mobile optimization, and integration with social media platforms such as Instagram and Facebook. Technical infrastructure includes modern web technologies and translation services, supporting a good user experience. Security posture is strong with HTTPS and HSTS enabled, alongside a cookie consent mechanism, though privacy policy and terms of service are missing, representing compliance gaps. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site presents a trustworthy and professional front for a local retail service business.

W

Windau Construction

martessfactory.com

63

Windau Construction is a small Latvian company specializing in the design and construction of high-quality wooden products including saunas, garden houses, glamping homes, hot tubs, and wooden furniture. Founded in 2023 by two brothers, the company emphasizes custom solutions tailored to client needs, leveraging Latvia's rich woodworking tradition. The website reflects a professional and consistent brand presence with clear contact channels and multilingual support. Technically, the site uses modern web technologies and analytics tools, hosted with Cloudflare DNS and CDN services, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and well-positioned in its niche but would benefit from enhanced privacy and security disclosures.

M

17 gadu pieredze metāla kāpņu izgatavošanā

metala-trepes.lv

35

The website metala-trepes.lv represents a small Latvian business specializing in the design, manufacturing, and installation of metal staircases and metal constructions. With over 15 years of experience since 2004, the company targets residential and commercial customers in Latvia, offering custom metal stair solutions including wood, stone, and glass steps. The site presents a professional image with a portfolio of projects, contact information, and a cookie consent mechanism indicating GDPR awareness. Technically, the site is built on Joomla CMS using SP Page Builder and Bootstrap, with integration of Google Maps and Facebook Pixel for marketing. Security posture is moderate with HTTPS enabled and CSRF protection, but lacks advanced security headers and explicit privacy or terms pages. WHOIS data is unavailable due to query limits, but no suspicious indicators are found in the website content. Overall, the site is functional, business-focused, and safe for general audiences.

A

Aviastars

aviastars.lv

53

Aviastars.lv is a Latvian small business specializing in powered hang gliding flights and related educational services. The company targets active leisure enthusiasts and event organizers, offering unique flight experiences and training. The website is professionally designed using the Tilda platform, with good mobile optimization and clear navigation. Social media presence on Facebook and Instagram supports brand visibility. Technically, the site uses standard web technologies and third-party services like GiftUp for gift card sales. Security posture is moderate with HTTPS enabled but lacks security headers and privacy policies, which are recommended for compliance and trust. WHOIS data is unavailable due to query limits, limiting full domain legitimacy assessment. Overall, the site is functional, safe, and credible for its niche market.

Furors SIA is a Latvian company specializing in elevator maintenance, repair, and emergency services with over 25 years of experience. The company primarily serves residential and commercial clients in Riga, focusing on timely and reliable elevator servicing to minimize downtime and ensure safety. Their website reflects a small but established local business with clear contact information and service descriptions. Technically, the site is built on an outdated WordPress platform with several legacy plugins and libraries, which poses security risks. The presence of HTTPS and Google reCAPTCHA indicates some security awareness, but the lack of security headers and outdated software versions reduce the overall security posture. Privacy compliance is minimal, with no visible privacy or cookie policies, which could be a concern under GDPR regulations. Overall, the website is functional and provides essential business information but requires modernization and improved security and privacy practices.

R

Riga Party Bus

rigapartybus.eu

55

Riga Party Bus is a small transportation service provider based in Latvia, specializing in party bus rentals for group events such as stag and hen parties, airport transfers, and sightseeing tours. The company has established a solid market position in Riga with a focus on providing a fun and stylish party experience on wheels, including onboard drinks and adult entertainment options. The website is professionally designed with good content quality, clear navigation, and mobile optimization. Technically, it employs modern JavaScript libraries, Google Maps integration, and analytics tools, ensuring a functional and engaging user experience. Security posture is good with HTTPS and reCAPTCHA implemented, though additional security headers could enhance protection. Privacy compliance is strong with comprehensive GDPR-aligned policies embedded directly on the site. Overall, the business demonstrates credibility with multiple contact channels and trust indicators such as customer reviews and social media presence. The content is mature-themed due to alcohol and adult entertainment offerings, targeting a mature audience. The domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

C

Cavr

cavr.lv

44

Cavr is a Latvian-based company specializing in the production and sale of premium Siberian sturgeon black caviar. The company combines traditional caviar harvesting methods with modern technology to deliver high-quality, fresh caviar products to gourmet consumers and specialty retailers. Their e-commerce platform is built on WordPress with WooCommerce, offering multiple product sizes and detailed product information. The website is multilingual, supporting Latvian, English, and Russian languages, enhancing accessibility for a broader audience. Technically, the site uses modern plugins and frameworks, including WPBakery Page Builder and Slider Revolution, and integrates Google Analytics and Tag Manager for performance and marketing insights. Security posture is adequate with HTTPS enforced and nonce tokens in forms, though some security headers are missing and no vulnerability disclosure or incident response information is provided. Privacy and cookie policies are present and GDPR compliant. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

T

The Baltic Society of Phlebology

baltic-phlebology.org

46

The Baltic Society of Phlebology operates as a professional medical society focused on the study and treatment of vein diseases. The organization primarily serves medical professionals such as phlebologists, dermatologists, surgeons, and vascular surgeons by providing international master courses and workshops on the latest treatment techniques. The website reflects a regional leader in phlebology education with a focus on Baltic countries, particularly Latvia. The business model is non-profit and educational, targeting healthcare professionals seeking advanced training in vein disease therapies. Technically, the website employs modern web technologies including Google Fonts, Google Maps API, and Google reCaptcha for security. The site is served over HTTPS with a valid SSL certificate and includes CSRF protection tokens, indicating a reasonable security posture. However, the absence of security headers and privacy/cookie policies suggests room for improvement in compliance and security best practices. The website is mobile optimized with good navigation and professional design, supporting a positive user experience. From a security perspective, the site shows strengths such as HTTPS enforcement and reCaptcha integration but lacks explicit privacy policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data is incomplete and malformed, which reduces domain registration transparency and trustworthiness. No signs of WAF or content blocking were detected, and the content is safe and appropriate for a general audience. Overall, the website is professionally presented and credible within its niche but would benefit from enhanced privacy compliance, improved security headers, and transparent domain registration information to strengthen trust and regulatory adherence.

S

Silva Prim

silvaprim.lv

44

Silva Prim is a Latvian company specializing in the trade and export of forestry products, including roundwood and wood chips, primarily operating at the Salacgrīva port. The company emphasizes long-term partnerships and sustainable sourcing, evidenced by its FSC certification. The website presents a professional image with clear contact details and service descriptions, targeting forestry industry businesses and exporters. Technically, the site uses a variety of modern JavaScript libraries and the DIRcms platform, delivering a good user experience with mobile optimization and interactive elements like sliders and maps. However, the absence of visible security headers and privacy policies, combined with unavailable WHOIS data, limits the overall trust and security posture assessment. The site is accessible without WAF or blocking mechanisms, and no adult or questionable content is present.

L

Laimes Taure

laimestaure.lv

49

Laimes Taure is a small hospitality business located in Latvia offering vacation rental services including winter and summer houses, glamping tents, and recreational amenities such as a smoke sauna, fishing, and boat rental. The website is built on the Tilda CMS platform and features a visually appealing design with good navigation and mobile optimization. Contact information is clearly presented, including phone, email, and social media links, supporting business credibility. However, the absence of privacy and cookie policies indicates a compliance gap. Security posture is moderate with HTTPS usage implied but no explicit security headers detected. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the website presents a professional and trustworthy front for a small hospitality provider but should improve privacy compliance and security practices.

S

SIA “ROLFO”

rolfo.lv

34

SIA “ROLFO” is a Latvian manufacturing company specializing in custom wooden windows, doors, stairs, and other carpentry products. Established in 1994, the company has over 25 years of experience and serves a primarily Latvian-speaking audience with an English option on the website. The business model focuses on bespoke production with a strong emphasis on quality materials and individualized customer service. The company maintains partnerships with several European suppliers and industry partners, enhancing its market position as a reliable local manufacturer. Technically, the website employs a moderate technology stack including jQuery, bxSlider, Google Maps API, and Google Analytics, with asynchronous loading of scripts for performance optimization. The site is served over HTTPS with valid SSL, uses Google reCAPTCHA for form protection, and integrates Facebook Pixel for marketing analytics. However, it lacks visible security headers and formal privacy or cookie policies, indicating room for improvement in compliance and security best practices. From a security perspective, the site demonstrates a basic to moderate security posture with encrypted communications and spam protection on forms. The absence of security headers and privacy documentation are notable gaps. No vulnerabilities or suspicious content were detected. The WHOIS data is unavailable due to query limits, but the website content and contact information suggest a legitimate and established business. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security measures. Strategically, the company should prioritize implementing comprehensive privacy and cookie policies to meet GDPR requirements, add security headers to improve defense-in-depth, and consider publishing a vulnerability disclosure policy to foster trust. Enhancing accessibility and mobile responsiveness would also improve user experience and broaden market reach.

T

Terra

terra-restorani.lv

50

Terra-restorani.lv is a Latvian restaurant website offering healthy and balanced food options primarily in Riga and surrounding areas. The business operates physical restaurant locations, provides food delivery services, catering, and a mobile food truck service called Terra Mobīlis. The website is built on WordPress with a modern tech stack including jQuery, Slick Carousel, and Google Maps integration, reflecting a moderate level of digital maturity. The site is well-structured with good SEO practices and mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though additional security headers and incident response information are recommended. Overall, the website presents a professional and trustworthy front for a small hospitality business in Latvia.

SIA Inovatīvo Tehnoloģiju Aģentūra is a professional adult education center based in Latvia, offering a variety of courses including digital skills, foreign languages, seminars, and individual training. The organization participates in EU-funded projects such as VIAA and NVA, targeting unemployed persons, working professionals, and lifelong learners. The website is well-structured, providing clear information about courses, contact details, and project updates. Technically, the site is built on WordPress with modern plugins for LMS and marketing, including LearnPress and Facebook Pixel for tracking. Security posture is moderate with HTTPS enabled but lacks some HTTP security headers and a cookie consent mechanism. WHOIS data could not be retrieved due to query limits, limiting full domain trust verification. Overall, the site is professional, trustworthy, and compliant with basic privacy requirements.

D

Domicella

domicella.lv

53

Domicella is a small local beauty salon based in Riga, Latvia, offering a range of personal care services including cosmetology, hairdressing, manicure, pedicure, and SPA treatments. The website is professionally designed with clear navigation and targets local customers seeking beauty and wellness services. The business model is service-oriented with appointment booking functionality, although the booking forms are currently commented out in the HTML source. Social media presence on Facebook and Instagram supports customer engagement. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, Owl Carousel, and Google Maps API. The site is mobile optimized and includes SEO-friendly meta tags. However, there is no detected CMS or hosting provider information. Performance is moderate, and accessibility features are basic. Security posture is average with HTTPS usage but lacks explicit security headers and privacy policies. Security evaluation shows no critical vulnerabilities but highlights the absence of privacy and cookie policies, security headers, and incident response information. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Contact information is clearly presented, including a Latvian phone number and physical address. No adult or explicit content is present, making the site safe for general audiences. Overall, the site is functional and professional for a small local business but would benefit from enhanced security practices, privacy compliance, and WHOIS transparency to improve trust and compliance.

S

SIA WoodHeart

woodheart.lv

41

SIA WoodHeart is a Latvian small manufacturing company specializing in modern design wooden furniture, high-quality wooden and wood-aluminum windows, wooden doors, stairs, and restoration services. The company emphasizes custom projects tailored to client preferences, highlighting craftsmanship and quality materials. Their website is professionally designed using WordPress with multilingual support and showcases their products through embedded videos and images. Contact information is clearly provided, supporting business credibility. Technically, the site uses a modern WordPress theme and plugins but lacks some security headers and has an unconfigured analytics plugin. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the security posture is moderate with room for improvement in privacy compliance and security best practices.

S

SIA RinkFactory

rinkfactory.com

49

RINK FACTORY is a Latvia-based small manufacturing company specializing in the design and production of professional equipment for sports arenas and stadiums, including ice hockey dasher boards, hockey goals, football minipitches, and telescopic seating. The company targets sports facility operators and arena managers, positioning itself as a niche supplier in the sports manufacturing sector. The website is built on WordPress with UIkit and integrates Google Maps for location display. While the site is professionally designed with clear navigation and contact information, it uses outdated software versions which may expose it to security risks. No privacy or cookie policies are present, indicating compliance gaps. Security posture is moderate with HTTPS enabled but lacking security headers and DNSSEC. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

A

A&I Technologies Ltd

aitechnologies.lv

9

A&I Technologies Ltd is a small export-import trading company established in 2006, specializing in international trade services including certification, export supply chain management, and supplying equipment for the energy sector. The company operates primarily from Latvia with an office in Moscow, serving as an intermediary between Russian and international companies. Their website reflects a professional business focus targeting companies engaged in global trade. Technically, the website uses modern web technologies such as Google Fonts, jQuery, and Google Maps API, with moderate performance and good mobile optimization. However, the site lacks explicit privacy and cookie policies and does not display security headers, which are areas for improvement. The security posture is moderate with no visible vulnerabilities but could benefit from enhanced security best practices. Overall, the website is safe, professional, and trustworthy but would gain from improved privacy compliance and security hardening.

Dipstage is a Latvian small business specializing in innovative car wash construction solutions, including a patented platform and a network of self-service car washes. Their website presents a professional and consistent brand image, targeting car wash operators and partners primarily in Latvia. The technical infrastructure is based on Bitrix CMS with modern JavaScript libraries, Google Maps API for location display, and Google reCAPTCHA v3 for bot protection. While the website is functional and moderately optimized for mobile, there is room for improvement in accessibility and SEO. Security posture is adequate with HTTPS and reCAPTCHA, but lacks formal security policies and security headers. Privacy compliance is basic with a cookie consent banner but no privacy policy or terms of service pages. Overall, the website is trustworthy and legitimate but would benefit from enhanced privacy and security documentation.

S

SIA Ultra Express

ultraexpress.lv

64

SIA Ultra Express operates a specialized ultrasonography (USG) center located in Riga, Latvia, providing diagnostic ultrasound services for adults, pregnant women, children, and infants. With over 10 years of experience, the company positions itself as a trusted local healthcare provider offering both state-funded and paid services. The website reflects a professional healthcare business with clear service offerings, partnerships with national health and insurance entities, and a focus on quality diagnostics. Technically, the site is built on the Webflow platform, leveraging modern web technologies such as Google Fonts and Google Maps API, and includes a cookie consent mechanism indicating GDPR awareness. Security posture is generally good with HTTPS enforced and secure form handling, though some security headers are missing and no explicit security or incident response policies are published. Overall, the website is well-designed, accessible, and trustworthy, supporting the company’s business credibility in the healthcare sector.

F

FLOWERS24 LTD

flowers24.lv

46

Flowers24.lv is a small e-commerce business specializing in flower and teddy bear sales with delivery services primarily targeting the Latvian market, especially Riga. The website is built on WordPress with WooCommerce, leveraging popular plugins and integrations for e-commerce functionality and marketing. The company presents clear contact information and maintains a presence on multiple social media platforms, enhancing customer engagement. The site includes privacy and cookie policies with consent mechanisms, indicating awareness of GDPR compliance. Technically, the site is hosted on SiteGround and uses modern web technologies, but lacks some security headers that could improve its security posture. The absence of WHOIS data limits domain legitimacy verification, but the website content and business information appear consistent and professional. Overall, the site offers a good user experience with clear navigation and product presentation, suitable for its target audience.

M

mono.lv

mono.lv

41

Mono Holdings operates as a diversified business group based in Latvia, offering a range of services including financial services, IT and telecommunications, logistics and warehousing, manufacturing and construction, trade, and real estate. The company appears to target business clients and partners primarily within Latvia, with a business model centered on holding and managing multiple service sectors. The website indicates an established presence since at least 2013, though detailed corporate information such as parent or subsidiary companies is not explicitly provided. Technically, the website is built on WordPress 6.0.9 with a combination of Bootstrap and jQuery libraries, leveraging Google Fonts and Google Maps APIs. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but remain at a basic level. The site uses HTTPS, ensuring encrypted communication, and implements a cookie consent banner reflecting GDPR compliance awareness. From a security perspective, the site lacks advanced security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content analysis. The absence of WHOIS data due to query limits restricts full domain legitimacy assessment, but the website content and structure suggest a legitimate business presence. Overall, the security posture is moderate with room for improvement in security best practices and transparency. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include enhancing security headers, publishing security and incident response policies, improving mobile and accessibility features, and providing clear contact information to strengthen trust and compliance.

M

Maquettica – architectural models

maquettica.eu

58

Maquettica is a specialized business focused on creating architectural models, including development, conceptual, historical, industrial, interior, landscape, masterplan, and monochrome models. The website presents a professional and visually consistent brand image targeting architects, developers, and clients interested in architectural scale models. The business operates in the real estate sector with a niche service offering. Technically, the website is built on WordPress using the Flatsome theme, incorporating common technologies such as jQuery, Google Analytics, Google Tag Manager, and Google Maps API. The site is moderately optimized for performance and mobile responsiveness but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and no visible incident response or security policy information. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the website is functional and professional but could improve in security and compliance areas to enhance trust and user protection.

SIA GEO Development is a Latvian surveying company specializing in the acquisition of high-quality and precise geospatial data. Their services are critical for construction projects, private home design, geodetic works, topographic surveying, and territorial planning. With over 15 years of experience, they have established a solid presence in the local market, offering a comprehensive range of surveying services including lidar scanning, photogrammetry, 3D measurements of bridges and engineering structures, bathymetry, and expert evaluations. Technically, the website employs a variety of modern JavaScript libraries and APIs such as jQuery, Google Maps API, and several UI and animation frameworks, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. However, there is no detected CMS or hosting provider information, and performance is moderate. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR. However, no explicit security headers or detailed security policies are found, and WHOIS data could not be retrieved due to query limits, limiting domain trust verification. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the website presents a professional and trustworthy front for a small surveying business in Latvia. The main risk lies in the inability to verify domain registration details, which should be addressed to enhance trust. Strategic recommendations include improving security headers, publishing explicit security and incident response policies, and conducting regular security audits.