Security Directory

E

Eesti Võrkpalli Liit

volley.ee

40

Eesti Võrkpalli Liit operates as the official Estonian Volleyball Federation, providing comprehensive information on volleyball teams, competitions, and related activities in Estonia. The website serves as a central hub for volleyball enthusiasts, players, coaches, and fans, offering news, schedules, and organizational details. The site is well-structured and professionally designed, reflecting its role as a national sports governing body. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO, Google Analytics, and Facebook Pixel. It is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements some best practices like opening external links in new windows with noopener. However, it lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. Overall, the domain is legitimate, well-established since 2010, and consistent with the organization's profile. Strategic improvements in privacy compliance and security headers would enhance the site's trustworthiness and regulatory adherence.

L

Lääne-Virumaa Kossuliiga

virukorvpall.ee

39

Lääne-Virumaa Kossuliiga operates a regional basketball league website serving the Lääne-Virumaa community in Estonia. The site provides schedules, results, team information, and news updates related to basketball events. The business model focuses on sports event promotion and community engagement within the regional sports sector. The website is built on WordPress with SportsPress Pro plugin, indicating a moderate level of digital maturity and technical infrastructure. Hosting is provided by Zone Media OÜ, a known Estonian hosting provider. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, the absence of security headers and privacy policies indicates room for improvement. The site uses common analytics and marketing tools such as Google Analytics and AddThis, but lacks explicit privacy compliance mechanisms. Overall, the website is functional and professional but would benefit from enhanced privacy and security practices to improve trust and compliance.

P

Peipsimaa turism

visitpeipsi.com

47

Visitpeipsi.com is a regional tourism promotion website dedicated to Peipsimaa, Estonia, highlighting the area's natural beauty, cultural heritage, local cuisine, and events. The site targets tourists interested in authentic regional experiences, offering information, event promotion, and an e-commerce shop for local products. The business operates as a small-sized entity focused on hospitality and non-profit tourism promotion, founded in 2011. The website branding is consistent and content quality is good, supporting its market position as a key regional tourism promoter. Technically, the site is built on WordPress with WooCommerce and Yoast SEO plugins, leveraging jQuery and Google Analytics for functionality and tracking. The site is mobile-optimized with good navigation and SEO practices, though performance is moderate. Hosting details are not explicit but DNS and registrar data suggest a stable setup. No WAF or blocking mechanisms are detected, and the site uses HTTPS with a clientTransferProhibited domain status, indicating basic security measures. Security posture is moderate; while HTTPS is enforced, no DNSSEC or security headers are detected, and no explicit security or incident response policies are published. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. The domain WHOIS data aligns well with the website content, showing consistent registration and legitimacy. Overall, the site is functional and professional but could improve security and privacy compliance. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response policies to enhance trust and compliance.

V

Via Hanseatica

viahanseatica.info

42

Via Hanseatica is a regional tourism initiative promoting an international travel route through Latvia, Estonia, and Russia, focusing on cultural heritage, nature, and culinary experiences. The website serves as an informational and promotional platform supported by multiple regional tourism organizations and partners. The digital infrastructure is based on WordPress with standard SEO and analytics tools, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is weak due to missing policies and consent mechanisms. WHOIS data is unavailable, which slightly reduces trust but does not negate the legitimacy indicated by the website content and partnerships.

L

Lõuna-Eesti

visitsouthestonia.com

59

Lõuna-Eesti is a regional tourism promotion website dedicated to showcasing the cultural, natural, and hospitality offerings of South Estonia. The site targets tourists, families, pet owners, and tourism professionals, providing rich content about local attractions, events, and accommodations. The business operates as a regional destination marketing organization with a focus on enhancing visitor experience and promoting local culture and nature. Technically, the website is built on WordPress, leveraging modern tools such as Gravity Forms, Rank Math SEO, Hotjar, and Google Analytics. The site is hosted on a provider associated with the domain's nameservers and employs HTTPS with a good SSL configuration. Security posture is solid with cookie consent mechanisms and no visible critical vulnerabilities, though some security headers could be improved. Privacy compliance is partial, with a detailed cookie consent banner but no explicit privacy policy or terms of service found. Overall, the website is professional, well-branded, and trustworthy, with room for improvement in privacy and security documentation.

S

SA Harju Ettevõtlus- ja Arenduskeskus

heak.ee

43

SA Harju Ettevõtlus- ja Arenduskeskus (HEAK) is a regional non-profit foundation based in Estonia focused on supporting local development through consulting, training, and partnership initiatives. The organization targets entrepreneurs, civic associations, and tourism sector participants, offering free advisory services and organizing events to foster regional growth. The website reflects a stable and professional presence with clear business objectives and a consistent brand identity. Technically, the site is built on WordPress with common plugins for event management, multilingual support, and analytics integration, demonstrating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though improvements could be made by adding security headers and formal incident response contacts. Overall, the website is trustworthy and well-maintained, supporting the organization's mission effectively.

E

Eesti Veevarustuse ja Kanalisatsiooni Inseneride Selts

evkis.ee

39

Eesti Veevarustuse ja Kanalisatsiooni Inseneride Selts (EVKIS) is a professional association for water supply and sanitation engineering specialists in Estonia. Established in 2010, it serves as a voluntary union providing membership services, training, news, and an online store to its members and the wider industry community. The website is well-structured and targets professionals in the environmental engineering sector, particularly those focused on water and sanitation technologies. The organization maintains partnerships with relevant industry bodies, enhancing its credibility and reach. Technically, the website is built on WordPress using popular plugins such as WooCommerce for e-commerce, Yoast SEO for search optimization, and Events Manager for event handling. The site is hosted by Zone Media OÜ, a known Estonian registrar and hosting provider. The infrastructure supports HTTPS with valid SSL certificates, ensuring secure communications. The site is moderately performant and mobile-optimized, though accessibility features are basic. From a security perspective, the site employs Google reCAPTCHA v3 to protect forms from spam and abuse. However, it lacks several important security headers such as Content-Security-Policy and HSTS, which are recommended to enhance security posture. No explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance and transparency. Overall, EVKIS presents a trustworthy and professional online presence consistent with its role as an industry association. The main risks relate to privacy compliance gaps, notably the absence of privacy and cookie policies, and the lack of advanced security headers. Addressing these areas would strengthen the site's compliance and security posture, thereby enhancing trust among members and visitors.

N

NOVOT Agentuur

novot.ee

56

NOVOT Agentuur is a well-established full-service marketing agency based in Estonia, founded in 2006. The company offers a broad range of marketing services including branding, website development, campaign management, social media, and media planning. Their website reflects a professional and consistent brand image, targeting businesses seeking comprehensive marketing solutions. The digital infrastructure is built on WordPress with modern plugins and tools such as Yoast SEO, Google Tag Manager, and CookieYes for privacy compliance. The site is mobile-optimized and demonstrates good SEO practices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business history. Overall, the website presents a trustworthy and professional digital presence.

E

Eesti Noorteühenduste Liit

enl.ee

47

Eesti Noorteühenduste Liit (ENL) is a well-established non-profit umbrella organization founded in 2010 that unites youth associations and participation bodies across Estonia. The organization focuses on advocacy, youth participation, training, and international cooperation, positioning itself as a leading entity in the Estonian youth sector. The website reflects a professional and comprehensive digital presence with clear content, strong branding, and multilingual support. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance, accessibility, and SEO. Security posture is solid with HTTPS, cookie consent, and error reporting, though some security headers and formal policies could be enhanced. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media engagement.

I

Infohunt

infohunt.ee

41

Infohunt.ee is a government-backed Estonian youth information portal providing localized event and activity information for young people. The platform aggregates data on youth events, hobby education, and projects, supporting youth engagement and participation. It is operated under the auspices of the Estonian Ministry of Education and Research (Haridus- ja Teadusministeerium) and hosted by EENet, reflecting a strong institutional foundation. The website uses WordPress with modern SEO and accessibility features, ensuring good user experience and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some improvements in security headers and explicit policies could enhance trust. Privacy compliance is partial, with privacy and terms pages present but lacking cookie consent mechanisms. Overall, Infohunt.ee is a credible, well-maintained portal serving the Estonian youth sector effectively.

E

Erasmus+ ja Euroopa Solidaarsuskorpuse agentuur

euroopanoored.eu

46

The website represents the Erasmus+ and European Solidarity Corps national agency in Estonia, providing comprehensive information, resources, and support for youth, youth workers, and organizations involved in European youth programs. It serves as a government-funded platform facilitating access to program opportunities, project guidance, and community engagement. The site is well-positioned as the authoritative national agency for these programs, targeting youth and professionals in the youth sector. Technically, the website is built on WordPress with modern performance and SEO optimizations, including WP Rocket and The SEO Framework. It employs Google Site Kit for analytics and consent management, ensuring GDPR compliance with a robust cookie consent mechanism. The site is mobile-optimized, accessible, and fast-loading, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs consent mode to restrict tracking and personalization. While explicit security headers and incident response policies are not evident, no vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the agency's Estonian identity, registered through a reputable local registrar without privacy protection, appropriate for a government entity. Overall, the website demonstrates a strong security posture, excellent content quality, and good privacy compliance, making it a trustworthy and professional platform for its audience.

Eesti Avatud Noortekeskuste Ühendus (Eesti ANK) is a national non-profit umbrella organization in Estonia that connects youth centers across the country. Founded in 2001, it currently represents 95 members with 152 youth centers. The website is currently in maintenance mode, limiting content availability and user engagement. The technical infrastructure is based on WordPress with a maintenance plugin, utilizing HTTPS and jQuery libraries. However, the site lacks advanced SEO, accessibility, and security headers, indicating room for technical maturity improvements. Security posture is moderate with HTTPS enabled but missing key security headers and policies. No privacy or cookie policies are present, which impacts compliance and user trust. Overall, the website reflects a legitimate and established non-profit entity but requires enhancements in content availability, security, and compliance to improve user trust and operational maturity.

H

Hannomal OÜ

veebispetsid.com

50

Hannomal OÜ operates a professional web development and e-commerce service business based in Estonia, with a strong market presence since 2011. The company offers a comprehensive suite of services including website creation, e-shop development, graphic design, programming, and content writing, primarily leveraging the WordPress platform. Their website reflects a mature digital presence with good SEO and user experience design. Technically, the site uses modern web technologies and integrates Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements such as enabling DNSSEC and adding security headers are recommended. Overall, the business demonstrates transparency and credibility with clear contact information and consistent branding.

E

Ettevõtlik kool

evkool.ee

44

Ettevõtlik Kool is a non-profit educational network in Estonia focused on promoting entrepreneurial learning and providing a quality mark for modern education. The website serves as a portal for schools and kindergartens to access training, tools, and certification processes. It targets educational institutions and professionals within Estonia, supporting over 221 schools and more than 41,000 students. The business model revolves around educational services and network collaboration rather than commercial sales. Technically, the website is built on WordPress with modern enhancements such as lazy loading, Google Tag Manager, and reCAPTCHA for security. The site is mobile-optimized and includes accessibility features, reflecting a mature digital presence. SEO and metadata are well implemented, supporting discoverability and user engagement. From a security perspective, the site enforces HTTPS, uses reCAPTCHA on forms, and avoids exposing sensitive data. However, it lacks explicit security policies and incident response contacts, which could be improved. Privacy and cookie policies are present and appear GDPR compliant, enhancing user trust. Overall, the website presents a trustworthy and professional image with good content quality and technical implementation. The domain registration data aligns with the business claims, supporting legitimacy. Strategic improvements in security policy transparency and additional compliance documentation would further strengthen the site's posture.

I

Ida-Viru Ettevõtluskeskus

ivek.ee

46

Ida-Viru Ettevõtluskeskus is a regional development center focused on providing free consulting services to individuals, non-profit organizations, and entrepreneurs in Ida-Viru County, Estonia. Established in 2010, it acts as a regional development engine offering training, funding opportunities, and support services. The website is multilingual, targeting Estonian, English, and Russian speakers, reflecting the regional demographic. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Maps and various plugins for SEO, multilingual support, and user interaction. Security posture is solid with HTTPS and cookie consent mechanisms, though additional HTTP security headers and published policies would enhance compliance and trust. Overall, the site presents a professional and trustworthy digital presence aligned with its business mission.

T

Targalt Internetis

targaltinternetis.ee

43

Targalt Internetis is a reputable non-profit educational initiative based in Estonia, dedicated to promoting safe and responsible internet use among children, youth, parents, and educators. The website offers a rich array of resources including workshops, seminars, articles, and events focused on digital safety, cyberbullying, misinformation, and digital wellbeing. It serves as a trusted platform with strong partnerships and a clear focus on community education and awareness. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Complianz GDPR, ensuring good SEO and privacy compliance. The site is mobile-optimized and accessible, with a moderate performance profile. Security-wise, the website enforces HTTPS, implements strong security headers, and provides a comprehensive cookie consent mechanism, although it lacks explicit incident response or vulnerability disclosure information. Overall, the site demonstrates a strong security posture and compliance with GDPR, supporting its credibility and trustworthiness in the education sector.

S

Spin TEK AS

spin.ee

53

Spin TEK AS is an established Estonian IT company specializing in software and hardware development with over 30 years of experience. The company serves both private and public sector clients, focusing on developing functional, user-friendly, and flexible information systems tailored to client needs. Their website reflects a professional digital presence built on WordPress with Elementor and Astra theme, indicating a moderate level of digital maturity. While the site is well-designed and mobile-optimized, it lacks explicit privacy, cookie, and security policies, which are critical for compliance and trust. Security posture is adequate with HTTPS enabled but could be improved by implementing security headers and formal incident response channels. Overall, the website demonstrates moderate trustworthiness and business credibility but would benefit from enhanced privacy compliance and security transparency.

E

Eesti Vee-ettevõtete Liit

evel.ee

42

Eesti Vee-ettevõtete Liit (EVEL) is a well-established voluntary association representing water companies and related entities in Estonia. Founded in 1995, it serves over 90% of the country's public water and sewerage service consumers through its 42 member water companies and 31 related companies. The organization provides coordination, information dissemination, training, and project participation services to its members, positioning itself as a key player in Estonia's water sector. The website reflects this focus with relevant content, partner links, and organizational information primarily in Estonian, targeting industry stakeholders and members.

V

Visit Harju

visitharju.ee

50

Visit Harju is the official tourism portal for Harju County, Estonia, providing comprehensive information on the region's natural beauty, cultural heritage, and leisure activities. The website targets tourists and visitors seeking to explore Harju's attractions, travel routes, and experiences. Managed by SA Harju Ettevõtlus- ja Arenduskeskus, it serves as a trusted regional resource with consistent branding and a clear focus on hospitality and cultural tourism. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, ensuring good SEO and user experience. The site is mobile-optimized and accessible, with moderate performance and integration of analytics tools like Google Analytics and Plausible. Security posture is solid with HTTPS, reCAPTCHA on forms, and no exposed sensitive data, though explicit security headers and policies are not fully documented. Privacy compliance is a notable gap, lacking visible privacy and cookie policies or consent mechanisms. Overall, the domain registration is consistent and legitimate, supporting the site's credibility as an official tourism portal.

T

Terviserajad

terviserajad.ee

43

Terviserajad is an established Estonian platform dedicated to promoting health trails and outdoor physical activities across the country. The website offers comprehensive information on trails, events, news, and seasonal campaigns to encourage community engagement and healthy lifestyles. It targets Estonian residents and visitors interested in fitness and nature exploration. The platform enjoys partnerships with major Estonian companies such as Merko, Eesti Energia, and Swedbank, enhancing its market position as a trusted national resource. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Analytics, Google reCAPTCHA v3, and Instagram Feed integration. The site is mobile-optimized with good SEO practices and uses HTTPS to secure communications. However, some security best practices like HTTP security headers are missing, and privacy compliance is incomplete due to the absence of privacy and cookie policies. From a security perspective, the site demonstrates a moderate security posture with encrypted connections and anti-spam measures but lacks published security policies and incident response contacts. No WAF or blocking mechanisms were detected, and no exposed sensitive data was found. The domain registration is consistent and long-standing, supporting the site's legitimacy. Overall, Terviserajad presents a professional and trustworthy online presence with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

M

Metana Digiagentuur

metana.eu

47

Metana Digiagentuur is a small digital agency based in Tallinn, Estonia, specializing in website design, email marketing, and digital advertising services such as Meta Ads and Google Ads. The company targets businesses seeking comprehensive digital marketing and web development solutions. Their website is built on WordPress using Elementor and WooCommerce, indicating a modern and flexible technical infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security measures.

J

Jõelähtme Valla Päevakeskus

joelahtmepaevakeskus.ee

40

Jõelähtme Valla Päevakeskus is a local government social service center in Estonia providing social and supportive services primarily to elderly and disabled individuals. The website is built on WordPress using common plugins for booking and accessibility, hosted by Zone Media OÜ. The site is well-structured with clear navigation and good mobile optimization. Security posture is adequate with HTTPS enabled and CSRF tokens in booking forms, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the site is functional and trustworthy but requires improvements in privacy and security practices.

V

Visit Lahemaa

visitlahemaa.com

47

Visit Lahemaa is a regional tourism website dedicated to promoting Lahemaa National Park in Estonia. It provides comprehensive information on local attractions, accommodations, dining, transport, and events, targeting tourists interested in exploring this natural and cultural area. The website is multilingual, supporting several languages to cater to a diverse audience. Technically, it is built on WordPress using the Elementor page builder, with integration of common analytics and tracking tools such as Facebook Pixel and Microsoft Clarity. The site is hosted under a legitimate domain registered since 2017, with standard security practices like HTTPS enabled. However, there is room for improvement in privacy compliance, notably the absence of a cookie consent mechanism and limited explicit privacy-related disclosures. Security posture is generally good but could be enhanced by enabling DNSSEC and publishing security policies. Overall, the website is professional and functional, serving its purpose as a tourism information portal effectively.

Z

Zone Media OÜ

maardupanoraam.ee

39

Maardu Panoraam is a local news and information website serving the residents of Maardu, Estonia. It provides timely news, official announcements, event information, job postings, and messages from the mayor, targeting the local community. The website is built on WordPress CMS, leveraging common plugins such as WPBakery Page Builder and WPML for multilingual support. It uses Google Analytics and Tag Manager for visitor tracking and performance insights. The site is hosted under the domain registered by Zone Media OÜ, an Estonian registrar, aligning with the website's geographic focus. Technically, the website demonstrates a moderate level of digital maturity with responsive design, good SEO practices, and integration of modern web technologies. However, it lacks some advanced security measures such as DNSSEC and security headers, which could be improved to enhance protection against common web threats. The absence of privacy and cookie policies indicates a gap in compliance with GDPR and related privacy regulations, which is critical given the use of tracking technologies. From a security perspective, the site uses HTTPS and secure login forms but does not provide explicit security or incident response policies. No WAF or blocking mechanisms are detected, and no suspicious or malicious indicators are present. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening to reduce risk and improve user trust.

Õ

Õigusbüroo HUGO.legal õigusabi

hugo.legal

53

Õigusbüroo HUGO.legal is an Estonian legal services platform offering fast, accessible legal advice through professional jurists. The website provides multiple consultation channels including in-office, video, web, and phone, targeting residents of Estonia. The platform also offers legal applications to help users resolve debt and other legal issues efficiently. The business is positioned as a trusted local legal aid provider with a strong digital presence and content marketing through blogs and testimonials. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WP Rocket, ensuring good performance, SEO optimization, and mobile responsiveness. The site uses HTTPS with a valid SSL certificate and integrates Google Analytics for user tracking. However, DNSSEC is not enabled, and security headers are missing, indicating room for security enhancements. From a security perspective, the site demonstrates good baseline practices including HTTPS and cookie consent mechanisms. There is no evidence of exposed sensitive data or vulnerable libraries. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure reduces transparency. The domain registration is stable but shows partial privacy in WHOIS data, which is reasonable for this business type. Overall, the website is professional, trustworthy, and well-optimized for its target audience. Strategic improvements in security headers, DNSSEC, and published security policies would enhance its security posture and compliance. The business appears credible and well-established with a medium-sized market presence in Estonia.

S

Sõnumitooja

sonumitooja.ee

52

Sõnumitooja is a regional weekly newspaper serving the Ida-Harju region in Estonia, established in 1994 and operating under the Eesti Meediaettevõtete Liit association. The website provides news articles, opinion pieces, and local event coverage, targeting residents and readers interested in regional news. The business model is primarily based on advertising and subscriptions, with a consistent brand presence and good content quality. Technically, the site is built on WordPress with popular plugins such as WPBakery Page Builder and Yoast SEO, hosted by Virtuaal.com OÜ, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and secure login forms, but lacks explicit security policies, headers, and vulnerability disclosure mechanisms. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy, though improvements in security transparency and privacy documentation are recommended.

R

Raasiku Vallavalitsus

raasikukalender.ee

45

Raasikukalender.ee is a local government-operated event calendar website serving the Raasiku municipality in Estonia. It provides categorized listings of cultural, sports, theater, music, and other community events targeted at residents and visitors. The website is designed to promote local events and facilitate community engagement through an accessible online platform. The business model is a public service information portal without commercial intent, focusing on local government communication and event promotion. Technically, the website is built on WordPress CMS with common plugins such as Contact Form 7 and uses modern JavaScript libraries like jQuery and Flatpickr for enhanced user experience. It employs Plausible Analytics, a privacy-conscious analytics tool, and loads resources from reputable CDNs. The site is hosted by Elkdata OÜ, an Estonian hosting provider, and uses HTTPS with a valid SSL certificate, ensuring secure data transmission. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and deferred script loading. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy and professionally maintained with a clear focus on community service. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, and establishing a vulnerability disclosure process to enhance security posture and regulatory compliance.

E

EOMAP

eomap.ee

39

EOMAP is an established Estonian technology company specializing in cartography and spatial data solutions, with a strong focus on municipal software products such as the Kovgis EVALD system. The company has a solid market position supported by integration with national information systems and a 30-year history. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a mature digital presence with good SEO and mobile optimization. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

I

Ida-Viru Ühistranspordikeskus

ivytk.ee

47

Ida-Viru Ühistranspordikeskus is a non-profit organization dedicated to coordinating and providing public transportation services in the Ida-Viru region of Estonia. The website serves as an information hub for passengers and transport providers, offering schedules, route maps, contact details, and ticket purchasing options. The organization is small-sized, regionally focused, and operates transparently with clear contact information and official registration details. Technically, the website is built on WordPress using a modern tech stack including Bootstrap, jQuery, and Yoast SEO for optimization. It employs Google reCAPTCHA v3 for form security and uses privacy-conscious analytics tools like Plausible. The site is hosted by Elkdata OÜ, consistent with the domain registration data, and uses HTTPS with a good SSL configuration. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and spam protection on forms. However, it lacks published security policies, security headers, and cookie consent mechanisms, which are important for compliance and enhanced security posture. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, the website is professional, trustworthy, and functional, but it would benefit from improved privacy compliance and enhanced security policies to better protect users and meet regulatory requirements.

Z

Zone Media OÜ

evald.ee

39

Eomap.ee is a technology company focused on geoinformation systems and cartography, primarily serving local governments in Estonia. Their flagship product, Kovgis EVALD, is a server-based, open-source software solution designed for municipal geoinformation management, integrating with national systems via X-tee. The company has a solid local market presence with over 30 years of experience, reflected in their comprehensive suite of modules tailored for municipal needs such as waste management, road maintenance, and public lighting. Technically, the website is built on WordPress with modern SEO and performance optimizations, though it lacks explicit privacy and cookie policies. Security posture is good with HTTPS and no visible vulnerabilities, but could be improved with additional security headers and incident response information. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact details.

I

Ida-Viru Ettevõtluskeskus AS

idaviru.ee

54

Ida-Viru Ettevõtluskeskus AS operates the website idaviru.ee, a regional tourism cluster portal promoting adventure and leisure activities in Ida-Virumaa, Estonia. The site targets tourists and families seeking diverse experiences including outdoor adventures, cultural sites, accommodation, and events. The business model focuses on tourism promotion and cluster partnership facilitation, positioning itself as a key regional information hub. Technically, the website is built on WordPress with Elementor and WooCommerce, optimized with WP Rocket, and uses Cloudflare DNS. It integrates modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, cookie consent implemented, and no critical vulnerabilities detected. However, the absence of explicit privacy policy and terms of service pages indicates room for compliance improvement. Overall, the website is professional, well-branded, and trustworthy, with good performance and user experience.

S

Sillamäe Muuseum

sillamae-muuseum.ee

45

Sillamäe Muuseum is a small cultural and educational institution based in Estonia, providing guided tours, educational programs, workshops, and children's entertainment rentals. The website is professionally designed using WordPress with a modern theme and includes multilingual support. It demonstrates compliance with GDPR through a cookie consent mechanism and provides clear contact information. The technical infrastructure is solid, leveraging common web technologies and plugins, with good mobile optimization and moderate performance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the website is trustworthy and serves its target audience effectively.

Jaanilill is a small local kindergarten based in Järva-Jaani, Estonia, providing early childhood education services primarily to local families. The website serves as an informational portal with basic content about the kindergarten, including navigation to pages about history, daily schedule, and parental information. The business model is straightforward, focusing on educational services for young children in a local community setting. The domain age and WHOIS data indicate a legitimate and consistent online presence since 2015. Technically, the website is built on WordPress using the Twenty Seventeen theme and includes jQuery as a JavaScript library. The hosting is provided by Elkdata OÜ, a local Estonian hosting provider. The site is accessible over HTTPS with a good SSL configuration but lacks advanced security headers and modern tracking or analytics tools. Mobile optimization and accessibility are basic but functional. From a security perspective, the site benefits from HTTPS but lacks security headers and does not display privacy or cookie policies, which are important for GDPR compliance. No forms or data collection mechanisms are present on the homepage, reducing immediate data protection risks. However, the absence of incident response contacts or security policies indicates a low maturity in security governance. Overall, the website is a basic but legitimate online presence for a local kindergarten. It would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to increase trust and regulatory adherence.

P

Peetri Kool

peetrikool.ee

38

Peetri Kool is a small educational institution located in Estonia, providing primary and kindergarten education services to the local community. The website serves as an informational portal offering details about school schedules, staff, admission, and extracurricular activities. The site is built on WordPress using the Education Hub theme and integrates basic modern web technologies such as jQuery and Font Awesome. Hosting appears to be managed by Elkdata OÜ, a local Estonian provider. The website is accessible, mobile-optimized, and includes clear navigation but lacks comprehensive content on the homepage. Security posture is moderate with HTTPS enabled but missing important security headers and privacy compliance elements such as privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Analytics are handled via plausible.io, indicating a privacy-conscious approach but without explicit consent mechanisms.

E

Elkdata OÜ

koerumuusikakool.ee

41

Koeru Muusikakool is a small, regionally focused music school based in Estonia, providing music education and cultural events primarily targeting students and the local community. The website is built on a modern WordPress platform using popular plugins such as WooCommerce and Tutor LMS, indicating a digital maturity suitable for educational content delivery and course management. The site features active social media integration and regularly updated news content, supporting engagement with its audience. Technically, the website is well-structured with responsive design and moderate performance, although accessibility and SEO optimizations are basic. From a security perspective, the website benefits from HTTPS with a valid SSL certificate, but lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance security posture. The WHOIS data confirms the domain is legitimately registered to Elkdata OÜ since 2010, consistent with the business's operational history. Overall, the website presents a professional and trustworthy front for the music school but requires improvements in privacy compliance and security best practices to reduce risk and increase user confidence. Strategic enhancements in these areas will support sustainable growth and regulatory adherence.

Aktsiaselts Koeru Hooldekeskus is a regional healthcare and eldercare service provider based in Järva County, Estonia. The organization specializes in 24/7 general care, nursing assistance, special care for individuals with deep disabilities, and dementia care. The website reflects a medium-sized entity with a clear focus on providing comprehensive care services to elderly and special needs clients. The business maintains a consistent brand presence and provides clear contact information and service descriptions, positioning itself as a trusted local healthcare provider. Technically, the website is built on WordPress using a modern tech stack including LayerSlider, WPBakery Page Builder, and Google reCAPTCHA for security. The site is mobile-optimized, accessible, and SEO-friendly, leveraging Yoast SEO and structured data for enhanced search visibility. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA to protect forms. However, it lacks some security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website demonstrates a solid digital presence with good business credibility and technical implementation. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance the security posture and regulatory adherence.

E

Ettevõte

jarvakodu.ee

43

Järvakodu is a small healthcare business operating a newly renovated elderly care home in Järva-Jaani, Estonia. The facility offers 24/7 general care services with a focus on personalized attention, a supportive environment, and sustainable energy solutions such as solar panels and geothermal heating. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the site is built on WordPress using modern plugins and frameworks, hosted by Elkdata OÜ, and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, though some security headers and policies could be improved. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, but no terms of service or incident response information is published. Overall, the site is trustworthy and well-maintained, supporting the business's credibility and customer engagement.

J

Järva Valla Noorsootöökeskus

jarvanoored.ee

40

Järva Valla Noorsootöökeskus is a local government youth work center in Estonia, focused on providing youth services, activities, and community engagement within the Järva municipality. The website serves as an informational portal for youth centers, events, hobby education, and youth council activities. The organization appears to be a small public sector entity founded recently in 2022, with a clear local community focus. Technically, the website is built on WordPress using Elementor and common plugins, hosted by Zone Media OÜ. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. No analytics or advertising scripts are detected, indicating minimal user tracking. Security posture is basic with HTTPS enabled but no security headers detected and no visible privacy or cookie policies, indicating compliance gaps with GDPR. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The site links to multiple partner organizations and government-related domains, enhancing trust. Overall, the website is functional and serves its purpose as a local youth center portal but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence.

J

Järva Vallaraamatukogu

jarvaraamat.ee

45

Järva Vallaraamatukogu operates as a public library service for the Järva County region in Estonia, providing residents with access to books, cultural events, and library services including a mobile library bus. The website serves as an informational portal with news, events, and user resources, targeting local community members and library patrons. The business model is government-funded public service, with a clear focus on community engagement and education. Technically, the website is built on WordPress using the Avada theme and incorporates modern web technologies such as Slider Revolution and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers are not detected and no explicit security or incident response policies are published. Overall, the site is trustworthy and professionally maintained, reflecting its public institution status.

Z

Zone Media OÜ

visitjarva.ee

44

Visitjarva.ee is a regional tourism information website focused on Järvamaa (Järva County) in Estonia. It provides comprehensive information about local events, accommodation, cultural and historical sites, nature activities, food, wellness, and seminar facilities. The site targets tourists and visitors interested in exploring the region, offering curated content and links to social media channels for engagement. The business operates under Zone Media OÜ, with a domain established in 2016, indicating a stable presence in the regional tourism market. Technically, the website is built on WordPress CMS, utilizing common libraries such as jQuery, Owl Carousel, LazySizes, and Lightbox for enhanced user experience. SEO is well addressed through Yoast SEO plugin and structured data (JSON-LD). The site is mobile optimized and performs moderately well, though accessibility features are basic. Hosting and domain registration are consistent and transparent, managed by Zone Media OÜ. From a security perspective, the site enforces HTTPS with excellent SSL configuration and includes a cookie consent banner, demonstrating basic privacy compliance. However, it lacks explicit privacy policy and terms of service pages, security headers, and a vulnerability disclosure mechanism. No incident response or security policy information is published, which could be improved to enhance trust and compliance. Overall, the website is a good quality regional tourism portal with solid business credibility and technical implementation. Strategic improvements in privacy documentation, security headers, and incident response transparency would elevate its security posture and compliance standing.

Skepast & Puhkim OÜ is a leading Estonian consultancy specializing in infrastructure, environmental, and spatial planning services with over 15 years of experience. The company offers expert engineering and consulting services including infrastructure design, environmental impact assessments, and spatial planning solutions. Their market position is strong within Estonia, supported by a medium-sized team of 40 experts and a professional digital presence. The website is well-structured, multilingual, and provides clear contact channels and business information. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Analytics and Tag Manager for traffic analysis. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Privacy compliance is robust with a comprehensive privacy policy and cookie consent banner. No critical vulnerabilities or suspicious WHOIS patterns were detected, indicating a trustworthy domain and business operation.

P

Põltsamaa Vallavara OÜ

visitpoltsamaa.com

44

Visit Põltsamaa is a regional tourism information website dedicated to promoting the Põltsamaa municipality in Estonia. The site provides comprehensive information about local attractions, accommodations, dining options, events, and cultural heritage, targeting tourists and visitors interested in exploring the region. The business operates as a small entity, likely under Põltsamaa Vallavara OÜ, with a focus on hospitality and government-supported tourism promotion. The website is multilingual, supporting Estonian, English, Finnish, and Russian, enhancing accessibility for diverse visitors. Technically, the website is built on WordPress CMS with common plugins such as Yoast SEO for search optimization and WPML for multilingual support. It uses jQuery and Google Analytics for user tracking and performance monitoring. The site demonstrates good mobile optimization and a professional design, though accessibility features are basic. Performance is moderate, with room for improvement in technical implementation such as enabling DNSSEC and adding security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, it lacks DNSSEC and security headers like Content Security Policy or HSTS, which could enhance protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is provided but limited to an email and phone number in the footer. No incident response or vulnerability disclosure information is available. Overall, the website is a credible and functional regional tourism portal with good business credibility and technical foundation but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

R

Rakvere Spordikeskus

rakverespordikeskus.ee

48

Rakvere Spordikeskus is a well-established public sports center located in Rakvere, Estonia, founded in 2010. It serves as a key regional hub for sports facilities, events, and training programs targeting local residents, sports clubs, and event organizers. The website reflects a professional and community-focused organization with clear contact information and active social media engagement. Technically, the site is built on WordPress with modern plugins and frameworks, offering good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although formal security policies and incident response information are not published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. Overall, the site demonstrates a mature digital presence suitable for its public service role.

R

Rakvere kultuurikeskus

rakverekultuurikeskus.ee

43

Rakvere kultuurikeskus is a public cultural center based in Rakvere, Estonia, providing cultural event hosting, room rentals, and advertising services to the local community and visitors. The website serves as an information portal for cultural activities and services offered by the institution. The domain is well-established since 2012 and aligns with the organization's public service role. Technically, the website is built on WordPress using a modern theme and several plugins to enhance functionality, including social media integration and event management features. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy, serving its purpose effectively with room for security and compliance improvements.

T

Tamsalu Perearstid OÜ

tamsalutervisekeskus.ee

41

Tamsalu Perearstid OÜ operates the Tamsalu Tervisekeskus website, providing primary healthcare services in Tamsalu and Vajangu, Estonia. The company offers a range of medical services including vaccinations, paid therapies, dental care, and pharmacy services, targeting local residents. The website is professionally designed using WordPress with the Avada theme and integrates trusted Estonian healthcare portals and partners, reflecting a solid local market position as a small healthcare provider. Technical infrastructure is modern and includes SEO optimization and mobile responsiveness, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. WHOIS data confirms domain legitimacy and consistency with business founding in 2022. Overall, the site is trustworthy and functional but could improve privacy compliance and security practices.

T

Tapa Valla Spordikeskus

tapasport.ee

46

Tapa Valla Spordikeskus is a municipal sports center in Lääne-Virumaa, Estonia, offering diverse sports facilities including swimming pools, gyms, health trails, and event hosting. The website serves local residents and sports enthusiasts with information on training, events, and additional services such as accommodation and seminar rooms. The business operates under a government sector model, founded in 2020, and maintains a consistent and professional online presence with active social media channels. Technically, the site is built on WordPress with modern plugins and SEO tools, hosted by Virtuaal.com OÜ, and optimized for mobile devices with good performance and accessibility. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers and explicit privacy and cookie policies are missing, representing compliance gaps. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

V

Virumaa Rannakalurite Ühing MTÜ

vrky.ee

38

Virumaa Rannakalurite Ühing MTÜ is a regional non-profit association established in 2007 in Estonia, serving fisheries sector stakeholders in Ida- and Lääne-Virumaa. The organization supports local fisheries businesses, non-profits, and municipalities through project coordination and information dissemination. The website reflects a focused regional presence with clear business objectives and a target audience within the local fisheries community. Technically, the site is built on WordPress with modern libraries such as jQuery, Swiper.js, and Google Fonts, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site demonstrates good business credibility and technical maturity appropriate for a small non-profit organization.

V

Virumaa Koostöökogu

viko.ee

40

Virumaa Koostöökogu is a small Estonian non-profit organization focused on regional cooperation and rural development in the Virumaa area. Founded in 2006, it serves local municipalities and communities by managing projects, organizing events, and facilitating cooperation among stakeholders. The website reflects this mission with relevant content, event announcements, and organizational information. Technically, the site is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, with integration of Google Analytics and Facebook Pixel for tracking. The site is mobile-optimized and SEO-friendly but lacks some accessibility features. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but missing important security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms despite tracking scripts. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

MTÜ Partnerid is a small Estonian non-profit organization established in 2006, focusing on regional development and cooperation among local municipalities, NGOs, and entrepreneurs in Lääne-Virumaa. The website serves as an information hub for projects, events, and organizational details, targeting local communities and stakeholders. The digital infrastructure is based on WordPress with a moderate technical maturity, leveraging common plugins for SEO, statistics, and event management. The site is well-structured, mobile-optimized, and provides clear navigation and contact information. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is partial, with a cookie consent mechanism present but no privacy policy or terms of service published. Overall, the website is trustworthy and professional but would benefit from enhanced compliance documentation and security policies.

E

eHost OÜ

arenduskeskus.ee

40

Investor.ee is a small Estonian educational website focused on providing information and guidance about investing and financial growth. The site targets individuals and organizations interested in learning about investment strategies, risk management, and financial planning. The business operates primarily as an informational resource with content in Estonian, positioning itself as a niche player in the finance education sector. The website is built on WordPress using modern themes and plugins, with a moderate level of technical maturity and good mobile optimization. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security best practices such as security headers and explicit privacy policies are missing. Overall, the site demonstrates a moderate security posture with room for improvement in privacy compliance and security transparency.