Security Directory

O

Oy Flinkenberg Ab

flinkenberg.fi

59

Oy Flinkenberg Ab is a well-established Finnish company founded in 1921, serving industrial, commercial, and public sector clients primarily in Finland. The company specializes in steel products, energy solutions including batteries and solar energy, chemicals for various industries, and electronic components. Their website reflects a mature B2B business model with a focus on professional service and product offerings across multiple sectors. The company maintains a consistent brand presence and active engagement through social media channels.

L

LandCredit AS

landcredit.ee

44

LandCredit AS is an Estonian financial services company specializing in loans secured by agricultural and forestry land. Their website targets farmers, forestry businesses, and renewable energy project developers, offering flexible loan products with faster processing times than traditional banks. The company positions itself as a niche lender contributing to rural development in Estonia. Technically, the website is built on WordPress with Elementor, leveraging modern analytics and marketing tools such as Google Analytics, Hotjar, and CookieYes for GDPR compliance. The site is well-structured, mobile-optimized, and provides clear contact channels and customer testimonials, enhancing trust and user experience. Security posture is solid with HTTPS and secure form handling, though improvements are recommended in publishing explicit security policies and incident response contacts. Overall, the website demonstrates a mature digital presence with good compliance and business credibility.

L

Leden Group

ojalagroup.com

55

Leden Group Oy is a Finnish manufacturing company specializing in metal-based contract manufacturing, steel service center operations, and production of cold roll formed steel profiles. The company is positioned as a leading partner in the Baltic region, offering comprehensive OEM services from design to logistics. It is part of the HANZA Group, which enhances its market presence and operational capabilities. The website reflects a medium-sized enterprise with a professional digital presence, leveraging WordPress and Elementor for content management and user experience. Technical infrastructure includes modern JavaScript libraries and consent management tools, indicating a mature digital strategy. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements such as DNSSEC and security headers could enhance resilience. Privacy compliance is supported by Usercentrics consent mechanisms, though explicit privacy and security policies could be more comprehensive. Overall, the website and business demonstrate high trustworthiness and professionalism, suitable for industrial clients seeking reliable manufacturing partnerships.

M

Mediahouse

mediahouse.ee

44

Mediahouse is an established Estonian media and advertising agency founded in 2010, specializing in data-driven digital marketing solutions across Meta and Google channels. The company targets businesses seeking comprehensive media strategies and measurable brand growth. Their website reflects a professional and consistent brand presence with a portfolio of notable clients and recent projects. Technically, the site is built on WordPress with Elementor and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Matomo. Security posture is solid with HTTPS and reCAPTCHA implemented, though lacking some security headers and published policies. Privacy compliance is minimal with no visible privacy or cookie policies, which is a key area for improvement. Overall, the website is well-designed, user-friendly, and trustworthy, supporting the company's market position as a reliable media partner.

T

The Conversion Department

theconversiondepartment.nl

58

The Conversion Department is a Dutch marketing agency focused on enabling online growth for organizations with growth ambitions. Founded in 2018, the company positions itself as a strategic marketing partner, leveraging modern digital marketing techniques and SEO strategies to help clients achieve their marketing objectives. The website reflects a professional and consistent brand image, utilizing WordPress with popular plugins such as Yoast SEO and Elementor to deliver a good user experience and SEO optimization. The technical infrastructure is solid, hosted by a reputable registrar with DNSSEC enabled and HTTPS enforced, indicating a secure baseline. However, the site lacks explicit privacy, cookie, and terms of service policies, which are critical for GDPR compliance and user trust. No direct contact information such as emails or phone numbers were found in the provided content, which may hinder user engagement and trust. Security posture is good but could be enhanced by implementing additional security headers and publishing a security policy. Overall, the site is functional and professional but requires improvements in privacy compliance and security transparency to elevate trust and compliance standards.

O

OÜ KINO MAASTIKUARHITEKTID

kinoline.ee

53

OÜ KINO MAASTIKUARHITEKTID is a small Estonian landscape architecture firm specializing in the design of public spaces, parks, and urban landscapes that blend modern design with sustainable thinking. The company presents a professional online portfolio showcasing recent projects and maintains active social media channels to engage with clients and the public. The website is built on a modern WordPress platform using Elementor and Jet plugins, optimized for mobile devices and SEO. Security posture is solid with HTTPS enabled and a comprehensive cookie consent mechanism in place, though additional security headers could enhance protection. The domain registration is transparent and consistent with the business's Estonian location and timeline. Overall, the website reflects a credible, professional business with good digital maturity and compliance with privacy regulations.

A

abmcloud

abmcloud.com

60

ABM Cloud is a technology company specializing in cloud-based business software solutions focused on supply chain optimization, logistics, and retail management. The company offers a suite of SaaS products designed to automate and improve business processes for manufacturers, distributors, and retailers across multiple countries. With projects completed in 32 countries and over 500 clients, ABM Cloud holds a solid market position in the business automation sector. The website is built on WordPress and integrates multiple modern analytics and marketing tools such as HubSpot, Google Tag Manager, Hotjar, Microsoft Clarity, and Facebook Pixel, indicating a mature digital infrastructure. The site is well-structured with good SEO practices and mobile optimization, although accessibility features are basic. The technical stack and hosting appear reliable, with domain registration consistent with the company's claimed history. Security posture is moderate; HTTPS is enforced, and domain transfer protections are in place, but DNSSEC is not enabled and security headers are missing. No explicit security or incident response policies are published, and privacy compliance is limited by the absence of a privacy policy page. The site uses extensive tracking and data collection via forms and third-party scripts, which may raise privacy concerns. Overall, ABM Cloud presents a professional and credible business front with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen trust and reduce risk exposure.

O

OÜ Nõo Lihatööstus

noo.ee

49

OÜ Nõo Lihatööstus is an established Estonian meat manufacturing company with a digital presence via a WordPress and WooCommerce-based website. The company focuses on producing quality meat products targeted primarily at local consumers and families. The website reflects a moderate level of digital maturity with good content quality, consistent branding, and a functional e-commerce platform. Technical infrastructure includes modern web technologies and integration with payment services such as Montonio. Security posture is adequate with HTTPS enabled and cookie consent implemented; however, the absence of security headers and explicit privacy policies indicates room for improvement. Overall, the site is accessible and professionally presented, supporting the company's market position as a trusted local manufacturer.

V

Via 3L

via3l.com

40

Via 3L is a Baltic-based third-party logistics company specializing in warehouse logistics, central warehousing, and international transportation services. Positioned as a leading logistics provider in the Baltic region, the company targets businesses requiring efficient supply chain and transport solutions. The website reflects a professional digital presence with clear branding and relevant service descriptions. Technically, the site is built on WordPress with modern plugins and frameworks, offering good mobile optimization and SEO readiness. Security posture is adequate with HTTPS enabled and domain transfer protections in place, though improvements such as DNSSEC and enhanced security headers are recommended. Privacy compliance is basic, with cookie consent implemented but lacking explicit privacy and terms of service pages. Overall, the website demonstrates moderate risk with room for enhanced compliance and security maturity.

C

ClanBeat

clanbeat.com

65

ClanBeat operates the website clanbeat.com, offering an app focused on supporting well-being and nurturing social and emotional learning through co-creation. The company targets educators, students, international schools, fitness communities, and lifelong learning communities. The business model centers on providing digital tools for well-being tracking, quality reflections, meaningful connections, and co-creation, positioning itself as a niche player in the education technology sector. The website is professionally designed with clear navigation and good content quality, supporting its market position as a specialized educational app provider. Technically, the site is built on WordPress, leveraging modern technologies such as NitroPack for performance optimization, Google Tag Manager for analytics, and Cloudflare for DNS services. The site demonstrates good mobile optimization and SEO practices but lacks some accessibility features. Security posture is adequate with HTTPS enabled and domain registration protections in place; however, the absence of DNSSEC and security headers indicates room for improvement. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. Business credibility is supported by consistent branding and structured data but is limited by the absence of direct contact information and security policies. Overall, the site scores moderately well but should address privacy and security policy gaps to enhance trust and compliance.

A

Advokaadibüroo LINDEBERG

lindeberg.legal

30

Advokaadibüroo LINDEBERG is a well-established Estonian law firm providing comprehensive legal services across major law domains including private law, public law, IT and intellectual property, and dispute resolution. The firm serves a diverse clientele including businesses, individuals, and the public sector, with a strong reputation in litigation and recognized partnerships such as with the Estonian E-commerce Association. Their website reflects a professional and consistent brand image, multilingual support, and a broad service offering. Technically, the site is built on WordPress with WooCommerce and enhanced by various plugins for SEO, analytics, and marketing, demonstrating a mature digital presence. Security posture is solid with HTTPS and domain transfer protections, though improvements like DNSSEC and enhanced security headers are recommended. Privacy and cookie policies are present and GDPR compliant, with clear contact information and active use of analytics and marketing pixels under consent mechanisms. Overall, the site is trustworthy and professionally maintained, supporting the firm's market position as a leading legal service provider in Estonia.

K

Kumera Corporation

kumera.com

33

Kumera Corporation is a well-established Finnish company specializing in manufacturing and marketing industrial and marine gearboxes, power transmission products, and engineering services. The company targets industrial sectors such as manufacturing, marine, energy, and heavy-duty industries, offering a broad range of products including custom-built gearboxes and propulsion systems. Their market position is supported by a long domain registration history and a consistent brand presence online. Technically, the website is built on WordPress with Elementor, leveraging modern plugins and a Cloudflare-based hosting infrastructure. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Security posture is adequate with HTTPS and Google reCAPTCHA in place, but could be improved by enabling DNSSEC and adding more HTTP security headers. Privacy compliance is partially addressed with a comprehensive cookie consent mechanism, but lacks a visible privacy policy or terms of service. Contact information is primarily via forms, with no explicit emails or phone numbers found. Overall, the website is professional and trustworthy, but could enhance transparency and security practices further.

Oshino Electronics Estonia OÜ is a well-established electronic contract manufacturing company based in Estonia, founded in 2010. It offers comprehensive services including product design, industrialization, manufacturing, and support, focusing on prototype assembly and small to medium volume production runs. The company is part of the larger Oshino Group, enhancing its market position and capabilities. The website reflects a professional and consistent brand image with good content quality and clear navigation, targeting industrial and automotive sectors. Technically, the site is built on WordPress with the Avada theme and uses modern technologies such as jQuery and Google reCAPTCHA, ensuring a moderate to good performance and mobile optimization. Security posture is solid with HTTPS and CAPTCHA protections, but lacks some security headers and formal policies, which are recommended for improvement. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

H

Holini

holini.com

66

Holini is a specialized Google Ads and analytics agency focused on serving B2B technology companies. The company emphasizes deep expertise by employing only senior specialists, avoiding one-off hacks, and following systematic growth and testing processes. Their market position is that of a niche expert agency with strong trust signals including Google Partner status, Premier Partner Awards, and positive client testimonials. The website content and branding are consistent and professional, targeting CMOs and marketers in the B2B tech sector. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager, showing a mature digital infrastructure with good SEO and mobile optimization. Security posture is solid with HTTPS enabled and consent management implemented, though some security headers could be improved and DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain registration is consistent with the business history and shows no suspicious patterns. The site demonstrates good privacy compliance with a comprehensive privacy policy and cookie consent mechanism.

E

ETS NORD

etsnord.com

63

ETS NORD is a manufacturing company specializing in ventilation products and solutions, targeting professional and business customers primarily in Northern Europe. The company emphasizes sustainability and quality, supported by ISO 9001 and ISO 14001 certifications. Their website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site is built on WordPress with modern tools such as Gravity Forms and Usercentrics for consent management, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and privacy compliance mechanisms in place, though some security headers are missing and no explicit incident response or vulnerability disclosure policies are published. WHOIS data is unavailable, which slightly impacts trust but is mitigated by the professional presentation and certifications. Overall, the website is reliable and suitable for its business purpose, with room for improvement in transparency and security documentation.

O

Operail OÜ

evrcargo.ee

54

Operail OÜ is an Estonian-based international railway company specializing in freight transport, rolling stock rental, maintenance, repair, and locomotive construction. With a history tied to over 150 years of railway operations in Estonia, the company serves import, export, domestic, and transit freight markets, positioning itself as a reliable and operationally efficient partner. The website reflects a medium-sized enterprise with a clear focus on transportation services within Estonia and neighboring regions. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses Google Tag Manager for analytics, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and a comprehensive cookie consent mechanism, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the company's credible market presence.

G

GoSwift

goswift.eu

63

GoSwift is a technology company specializing in digital transportation management solutions aimed at optimizing logistics and freight operations. The company offers services such as scheduling arrivals, queue management, automated access, and yard management, targeting logistics operators and industrial clients. The website demonstrates a professional digital presence with multilingual support and trusted client logos, indicating a credible market position in the transportation sector. Technically, the site is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and Google Tag Manager for analytics. Security posture is good with HTTPS enforced, though security headers and explicit privacy policies are lacking. Overall, the site is well-structured and user-friendly but could improve transparency and compliance documentation. Strategic recommendations include adding privacy and terms policies, enhancing security headers, and providing clear contact and incident response information.

C

Crane Service Inc

craneserviceinc.com

53

Crane Service Inc is a well-established North American company specializing in heavy lift, rigging, heavy hauling, alternative movement, and warehouse/storage services. Founded in 1998, the company positions itself as a trusted leader with a modern fleet and a strong safety record. Their website reflects a professional and consistent brand image targeting industrial clients requiring specialized crane and rigging services. Technically, the site is built on WordPress with the Divi theme and integrates modern JavaScript libraries and Google Analytics for tracking. Security posture is good with HTTPS and reCAPTCHA implemented, though there is room for improvement in DNS security and security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is credible and trustworthy, supporting the company's market position.

P

Producement

producement.com

59

Producement is a small Estonian technology company specializing in startup product engineering services. Founded in 2017, the company helps founders rapidly build and scale their products while investing sweat equity to become shareholders. Their key services include product engineering, full-stack development, and tech recruitment. The company positions itself as a niche partner for early-stage startups, aiming to build successful startups and help them become independent. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. The technical infrastructure includes modern tools such as Google Analytics and Cloudflare DNS, but hosting provider details are not explicit. Security posture is solid with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, including email and physical address, along with social media presence. Overall, the website is trustworthy and credible but could improve privacy and security transparency.

A

Avera-Trading AS

avera.ee

44

Avera-Trading AS operates a professional e-commerce website focused on retailing cleaning chemicals, equipment, and hygiene products primarily in Estonia. Established in 2010, the company presents a well-structured online catalog with clear pricing and product categorization, targeting businesses and consumers seeking cleaning solutions. The website leverages WordPress and WooCommerce platforms, enhanced with popular plugins such as Yoast SEO and WPBakery Page Builder, indicating a mature digital infrastructure. Integration of Google Analytics and Tag Manager reflects a data-driven approach to marketing and user behavior analysis. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though explicit security headers and privacy policies are missing, representing compliance and security improvement opportunities. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and explicit security disclosures.

E

Edhotels OÜ

edreamhotels.com

52

Edhotels OÜ operates a specialized hospitality technology and web design business focused on providing hotel sales and management software (BOUK) and website design services primarily in Estonia and the Baltic region. The company targets hotels, guest apartments, spas, and other accommodation providers, offering integrated booking engines and management tools to streamline operations and increase direct bookings. Their market position is that of a small but established regional player with a decade-plus history, supported by client testimonials and a professional online presence. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, Facebook Pixel, Hotjar, and MailerLite for marketing automation. The site is mobile-optimized, SEO-friendly, and uses consent management for GDPR compliance. Performance is moderate with good user experience and navigation clarity. Security posture is solid with HTTPS enforced and no visible sensitive data exposure. However, the absence of security headers and lack of explicit security or incident response policies are areas for improvement. The domain WHOIS data is missing, which raises concerns about domain legitimacy and registration consistency, potentially impacting trust. Overall, the website and business demonstrate professionalism and technical maturity, but the domain registration anomaly requires verification. Strategic recommendations include enhancing security headers, publishing security policies, and resolving WHOIS discrepancies to strengthen trust and compliance.

P

PersonaliDisain

personalidisain.ee

44

PersonaliDisain is an Estonian-based small business specializing in strategic human resource consulting and development services. The company offers a range of HR-related services including consulting, system development, surveys, recruitment, training, and coaching. Their market position is that of a niche HR consulting partner serving organizations seeking to optimize their personnel management. The website is professionally designed using WordPress and Bootstrap, with good mobile optimization and clear navigation. The technical infrastructure includes modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and Leadfeeder, indicating a mature digital presence. Security posture is generally good with HTTPS enforced and use of reCAPTCHA on forms, though security headers could be improved. Privacy compliance is supported by a cookie consent mechanism and a privacy policy page, though no terms of service or security policy pages were found. Overall, the domain registration is consistent and legitimate, supporting the business credibility. Recommendations include enhancing security headers and reviewing third-party scripts to reduce risk.

F

FinEst-Hall Factory OÜ

pvc-hall.com

47

FinEst-Hall Factory OÜ is a specialized manufacturer and service provider of PVC hangars and awnings, serving primarily B2B clients in Northern Europe. The company offers a full turnkey solution including design, manufacturing, installation, maintenance, and expansion of modular PVC structures, complemented by metal processing services such as plasma cutting and tube laser. Their market position is supported by multiple ISO certifications and a portfolio of completed projects, emphasizing quality, flexibility, and customer satisfaction. Technically, the website is built on WordPress with WooCommerce and employs modern web technologies including jQuery, Google Analytics, Google Tag Manager, Hotjar, and Facebook Pixel. The site is well-optimized for SEO, mobile-friendly, and accessible, with structured data enhancing search engine visibility. Cookie consent and privacy policies are implemented in compliance with GDPR. From a security perspective, the site uses HTTPS with a good SSL configuration and enforces domain transfer protection. However, it lacks some advanced security headers and does not publish a dedicated security policy or incident response information. Tracking and marketing tools are used responsibly with user consent mechanisms in place. Overall, the website presents a professional, trustworthy, and compliant digital presence for a small manufacturing business. Recommendations include enhancing security headers, enabling DNSSEC, and publishing security and incident response policies to further strengthen trust and compliance.

S

Sparta IT Solutions

sparta-it.eu

47

Sparta IT Solutions operates the website sparta-it.eu, positioning itself as a trusted supplier and distributor of branded IT infrastructure hardware including Supermicro, HP, Lenovo, and Cisco products. The company targets enterprise customers and partners seeking reliable IT hardware solutions, offering a range of products such as networking hardware, servers, and storage solutions. The website is professionally designed using WordPress with the Divi theme and supports multiple languages, indicating a focus on international markets primarily in Europe. Technical infrastructure is modern and stable, with HTTPS enabled and SEO optimizations in place, though some performance and accessibility aspects could be improved. Security posture is adequate with SSL in place but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the website reflects a credible small technology business with room for improvement in privacy and security transparency.

U

Unterwegs Celle

unterwegs-celle.de

48

Unterwegs Celle is a small retail business specializing in outdoor equipment and apparel, targeting customers in the Celle region of Germany. The website serves as an online presence to complement their physical store, showcasing top outdoor brands and providing contact information for customer engagement. The business positions itself as a local specialist in outdoor retail, with a focus on quality brands and customer service. Technically, the website is built on WordPress CMS, utilizing popular plugins such as Smart Slider 3, Contact Form 7, and Cookiebot for cookie consent management. Hosting is provided by Timme Hosting, with multiple name servers indicating a stable infrastructure. The site demonstrates good SEO practices, mobile optimization, and basic accessibility features, though there is room for improvement in security headers and accessibility compliance. From a security perspective, the site enforces HTTPS and uses Cookiebot to manage user consent, including blocking of scripts until consent is given. Google Analytics is implemented with IP anonymization to enhance privacy compliance. However, explicit security policies, incident response contacts, and advanced security headers are not present, indicating a moderate security posture suitable for a small retail business but with opportunities for enhancement. Overall, the website is professional, functional, and compliant with GDPR requirements regarding privacy and cookie management. The risk level is moderate, with no critical vulnerabilities detected. Strategic recommendations include improving security headers, adding explicit security and incident response policies, and maintaining up-to-date software to mitigate potential risks.

T

Technics in Management Transfer (TMT)

tmt-aba.com

52

Technics in Management Transfer (TMT) is a specialized consulting firm established in 1978 in Tokyo, Japan, focusing on labor and human resource consulting for multinational firms. The company offers services including personnel policy, rules of employment, staff reduction, compensation design, union relations, and training seminars. The website presents a professional image with clear service descriptions, founder information, and client testimonials, targeting businesses operating in Japan seeking HR and labor consulting expertise. Technically, the website is built on WordPress using Elementor and Yoast SEO, with modern web technologies and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks security headers and visible privacy or cookie policies, indicating compliance gaps. The absence of WHOIS data for the domain raises concerns about domain legitimacy, though the website content appears credible. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security practices.

J

Junior Achievement Eesti

ja.ee

45

Junior Achievement Eesti is a well-established Estonian non-profit foundation focused on promoting entrepreneurship education among youth from grades 1 through 12. Founded in 1992, it provides practical business and financial literacy programs, including the Õpilasfirma® student company initiative, supported by mentors and volunteers. The organization holds a leading position in Estonia's educational sector for entrepreneurship. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, with embedded YouTube videos in privacy-enhanced mode and minimal tracking via plausible.io. Security posture is good with HTTPS enforced, but lacks advanced security headers and formal privacy or cookie policies. No contact emails or phone numbers are visible on the homepage, and no incident response or vulnerability disclosure information is provided. Overall, the website is professional and trustworthy but could improve privacy compliance and security transparency.

W

WOW EVENTS

wowevents.eu

43

WOW EVENTS is an established Estonian event management company with over 23 years of experience, specializing in corporate events such as conferences, client events, large-scale festivals, and internal communications. The company positions itself as a trusted and professional partner in the Estonian market, offering comprehensive event planning and production services. Their website reflects a mature digital presence with a professional design, clear navigation, and extensive service descriptions targeting business clients in Estonia. Technically, the website is built on WordPress using the Divi theme and integrates multiple marketing and analytics tools including Google Analytics, Facebook Pixel, and MonsterInsights. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced, but explicit security headers are not clearly detected. No critical vulnerabilities or exposed sensitive data were found in the content. Privacy compliance is an area for improvement as no explicit privacy or cookie policies were found, and user tracking is extensive via multiple third-party services. The WHOIS data is not publicly available due to EURid privacy policies, which is common for .eu domains but reduces transparency. Contact information is clearly provided with company domain emails and phone numbers, and social media presence is strong across major platforms. Overall, the website and business appear legitimate and professional, with minor gaps in privacy compliance and WHOIS transparency. Strategic recommendations include adding comprehensive privacy and cookie policies, enhancing security headers, and improving accessibility to strengthen trust and compliance.

D

Digimatch OÜ

digimatch.eu

46

Digimatch OÜ is a specialized international business consultancy founded in 2020, focused on facilitating Estonian digital companies' growth in the German market. Leveraging a vetted network of partners and a mission to accelerate growth through partnerships, Digimatch offers matchmaking, warm lead connections, market research, entry strategy, and funding assistance. The company operates primarily in the technology sector with a small-sized business profile based in Estonia. The website is professionally designed using WordPress and Elementor, with good mobile optimization and clear navigation. Security posture is strong with HTTPS and security headers, though explicit security policies and cookie consent mechanisms are absent. Privacy policies are comprehensive and GDPR compliant. Contact information is clearly provided, including email, phone, and physical address, alongside social media presence on LinkedIn and Facebook.

R

Ridge Capital

ridgecap.eu

49

Ridge Capital AS is a small Estonian investment firm founded in 2010, specializing in active investing focused on emerging markets, particularly in Central and Eastern Europe, South Eastern Europe, and the Baltic countries. The company leverages over 25 years of team experience to pursue event driven trading and long-term value investments, maintaining portfolio liquidity through diverse financial instruments. The website reflects a professional and consistent brand presence with clear business descriptions and contact information, targeting investors interested in niche emerging markets. Technically, the website is built on WordPress using Elementor and enhanced with Yoast SEO and Weglot for multilingual support. The site is mobile optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and explicit security or incident response policies. No forms collecting personal data are present on the homepage, reducing immediate data protection concerns. Overall, the website demonstrates a mature digital presence with good privacy compliance and business credibility. Security practices are adequate but could be improved by adding security headers, incident response contacts, and vulnerability disclosure mechanisms. The domain registration is consistent with the business history and shows no suspicious indicators, supporting the legitimacy of the entity. Strategic recommendations include enhancing security headers, publishing a security policy, providing incident response contact details, and considering a vulnerability disclosure program to strengthen trust and compliance.

S

Strands

strands.com

84

Strands is a well-established fintech company specializing in digital banking software solutions that leverage real-time data and AI to enhance customer engagement and financial management. Their platform targets financial institutions, banks, and SMEs, offering modular solutions such as Personal Financial Management, Business Financial Management, AI-driven insights, and Carbon Footprint analytics. The company demonstrates a strong market position with a global client base and a consistent brand presence. Technically, the website is built on WordPress with modern marketing and analytics integrations, including HubSpot, Google reCAPTCHA Enterprise, Matomo, and LinkedIn Insight. The site is well-optimized for SEO, mobile responsiveness, and user experience. Security posture is solid with HTTPS enforcement and bot protection, though DNSSEC is not enabled and explicit security policies are not published. Overall, the domain registration is consistent with the business claims, showing legitimacy and transparency. The website exhibits extensive user tracking balanced with privacy compliance mechanisms such as cookie consent banners and GDPR-aligned policies.

V

Visionest Institute

mi.ee

49

Visionest Institute is an Estonian-based education and training organization formed by the merger of Marketingi Instituut, Invicta, and Director. The company offers a wide range of training courses and development programs targeting both businesses and individual learners, positioning itself as a key player in the Estonian professional education market. The website is well-structured, professionally designed, and optimized for SEO and mobile devices, reflecting a mature digital presence. The technical infrastructure is built on WordPress with integrations including WooCommerce, HubSpot, Google Tag Manager, and Facebook Pixel, indicating a modern marketing and analytics setup. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though DNSSEC is not enabled and some security headers are missing. The WHOIS data aligns well with the business claims, showing a legitimate and consistent registration. Overall, the website demonstrates good compliance with privacy regulations and provides clear business information, supporting a trustworthy online presence.

S

SPARK Social

sparksocial.ee

43

SPARK Social operates an Estonian-based online social media training platform branded as SPARK PRO koolitus. The website offers a comprehensive social media course targeting individuals ranging from beginners to professionals, including social media specialists, marketers, and small business owners. The business model is centered on paid online education with scheduled live sessions via Google Meet, supplemented by Q&A with industry experts and access to recorded materials. The company leverages known social media strategists and creative professionals as instructors, enhancing credibility and market positioning within the education sector in Estonia. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, WPBakery Page Builder for layout, and Slider Revolution for visual content. It uses modern web technologies including jQuery, Google Fonts, and Font Awesome icons. Hosting and domain registration are managed by Zone Media OÜ, a reputable Estonian registrar. The site demonstrates good mobile optimization and moderate performance, though accessibility and SEO optimizations are basic. From a security perspective, the site enforces HTTPS and uses secure forms via Contact Form 7. However, it lacks visible security headers such as Content-Security-Policy and X-Frame-Options, which are recommended best practices. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is weak due to the absence of a privacy policy and cookie consent mechanism, which poses a compliance risk under GDPR. Analytics usage includes Google Analytics, indicating moderate user tracking. Overall, the website is professionally designed and credible, with a clear business focus and consistent branding. The main risks relate to privacy compliance and security header implementation. Strategic improvements in these areas would enhance trust and regulatory adherence.

Z

Zephyr Ventilation

zephyronline.com

51

Zephyr Ventilation is a well-established premium kitchen appliance brand specializing in range hoods, wine coolers, and beverage coolers. The company targets homeowners and kitchen designers seeking stylish and innovative kitchen ventilation and refrigeration solutions. Their website reflects a medium-sized retail business with a strong focus on design and customer support, including a dedicated help center and parts store. Technically, the site is built on WordPress with WooCommerce, leveraging modern JavaScript libraries and marketing tools such as Google Tag Manager, Facebook Pixel, and Hotjar. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS and reCAPTCHA v3, but lacks DNSSEC and explicit security headers, and does not publish a security policy or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite extensive tracking. Overall, the domain is legitimate, long-standing, and consistent with the business identity.

H

Huntloc

huntloc.com

57

Huntloc is a technology company specializing in real-time hunting tracking applications and GPS-GSM tracking devices for hunting dogs. Founded in 2013 and based in Estonia, the company targets hunters and hunting dog owners with a niche product offering that enhances hunting efficiency and safety. The website is built on WordPress with WooCommerce, leveraging modern web technologies such as Bootstrap and FontAwesome, and integrates extensive analytics and tracking tools to monitor user engagement. Security posture is adequate with HTTPS enabled and domain registration protections, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent mechanisms in place but no visible privacy policy or terms of service. Overall, the site presents a professional and consistent brand image with moderate trustworthiness.

NetMedia is a small Estonian technology-focused website providing educational content and reviews related to web development and hosting services. The site is built on WordPress and hosted by Zone Media OÜ, with a consistent domain registration and hosting provider alignment. The website demonstrates good content quality, SEO optimization, and a professional design with clear navigation. However, it lacks explicit privacy and cookie policies, security headers, and vulnerability disclosure mechanisms, which are important for compliance and security posture. The site uses HTTPS and modern technologies but could improve accessibility and security best practices.

C

Modebranschens Nyheter: E-handel, Varumärken och Interaktiv Kundupplevelse

consortiofashiongroup.com

60

ConsortioFashionGroup.com is a small-scale WordPress-based blog focused on delivering news and insights related to the fashion industry, specifically targeting e-commerce, brand strategies, and interactive customer experiences. The website content is primarily in Swedish and features articles authored by a consistent author, indicating a focused editorial approach. The business model centers on content publishing to attract fashion professionals and enthusiasts interested in digital marketing and investment trends within the fashion sector. Technically, the website leverages WordPress CMS with common web technologies such as jQuery and Bootstrap Grid for responsive design. Hosting and DNS services are provided via Cloudflare, ensuring reliable DNS resolution and HTTPS encryption. The site uses Matomo analytics for visitor tracking but lacks visible cookie consent mechanisms, which may impact privacy compliance. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers, which are recommended to enhance security posture. No privacy, cookie, or terms of service policies are published, and no contact or incident response information is available, indicating gaps in compliance and transparency. No vulnerabilities or suspicious activities were detected. Overall, the website presents a professional and consistent brand image with good content quality and user experience but requires improvements in privacy compliance, security best practices, and transparency to enhance trustworthiness and regulatory adherence.

A

Avitus

avitus.ee

41

Avitus is a small Estonian health portal providing information and practical advice on mental and physical health, nutrition, exercise, vitamins, and supplements. The website targets Estonian-speaking users interested in improving their health and wellbeing through informed lifestyle choices. The business operates primarily as an informational platform without visible e-commerce or direct service offerings. Technically, the site is built on WordPress using the GeneratePress theme, with modern web technologies and good mobile optimization. The hosting and domain registration are consistent with the business location and age. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is minimal, with only a basic privacy policy present and no cookie consent mechanism. Contact information is limited to a single company email address, with no phone or physical address provided. Overall, the site is professionally designed and trustworthy but could improve in privacy and security practices.

N

Nordic Aviation Group

nordica.ee

44

Nordic Aviation Group is a medium-sized airline group based in Estonia, operating subsidiaries Nordica and Xfly. The company provides air transportation services and aircraft leasing. Recently, the group filed for bankruptcy, ceasing daily operations and initiating bankruptcy proceedings. The website serves as a corporate communication channel, providing press releases and company information. The technical infrastructure is based on WordPress with modern web technologies such as Bootstrap and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly but lacks some advanced accessibility features. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are missing. Privacy compliance is basic, with no cookie consent mechanism detected. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

A

Anju Software, Inc.

anjusoftware.com

61

Anju Software, Inc. is a medium-sized, customer-focused software company specializing in life sciences technology solutions. Their offerings include adaptable software suites for clinical research, medical affairs, and data science, targeting biopharmaceutical companies and CROs globally. The company positions itself as a trusted partner to top pharmaceutical firms, providing tools that accelerate clinical trials and enhance patient outcomes. The website reflects a professional and consistent brand image with comprehensive product and service information. Technically, the website is built on WordPress with modern frameworks like Bootstrap and Elementor, integrating multiple analytics and marketing tools such as Google Analytics, LinkedIn Insight, and VWO. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced. Security measures include HTTPS enforcement and reCAPTCHA on forms, but additional security headers could improve the security posture. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is supported by clear privacy and cookie policies with consent mechanisms, though no explicit terms of service or vulnerability disclosure policies were found. The absence of WHOIS data reduces domain trustworthiness, suggesting privacy protection or unregistered status, which should be verified. Overall, Anju Software presents a credible and professional online presence with strong business and technical foundations. Strategic improvements in security headers, accessibility, and transparency policies would further enhance trust and compliance.

N

Nordecon AS

nordecon.com

52

Nordecon AS is a leading construction and real estate development company based in Estonia, with a strong market presence since 1989. The company operates in Estonia and neighboring countries including Finland, Sweden, and Ukraine. It offers comprehensive services including building and facility construction, project management, and real estate development. The company is publicly listed on the Nasdaq Tallinn stock exchange since 2006, reinforcing its market credibility. The website reflects a professional and modern digital presence with clear navigation, multilingual support, and detailed project showcases. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools, optimized for mobile and accessibility. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some improvements like DNSSEC and security headers could enhance protection. Overall, the website and domain registration data align well with the company's business claims, indicating high legitimacy and trustworthiness.

S

Saaremaa Golf & Country Club

saaregolf.ee

50

Saaremaa Golf & Country Club is a small hospitality business based in Estonia, specializing in golf tourism and resort services. The company offers a world-class golfing experience with well-maintained courses and resort amenities targeting golf enthusiasts and families. The website is professionally designed using WordPress with the Divi theme and incorporates modern SEO and analytics tools, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks some advanced security headers and explicit incident response information. Privacy compliance is weak due to missing privacy and cookie policies, which should be addressed to meet GDPR requirements. Overall, the website is trustworthy and functional, supporting the business's market position as a regional golf resort.

W

Walless

walless.com

66

Walless is a modern Baltic law firm established in 2008, providing bespoke legal services focused on client trust, openness, and innovation. The firm targets businesses in the Baltic region and offers services including arbitration, dispute resolution, and corporate legal advisory. Their market position is that of a growing regional legal services provider with a professional online presence. Technically, the website is built on WordPress, leveraging modern plugins and technologies such as Google Analytics, reCAPTCHA, and GDPR cookie consent mechanisms. The site is well optimized for performance and mobile devices, with good SEO and accessibility features. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website reflects a credible and professional business with a high trustworthiness rating.

N

Norma

norma.ee

41

Norma is a well-established manufacturing company specializing in automotive safety system components, operating as a subsidiary of the global Autoliv group. The company serves major automotive manufacturers worldwide, leveraging over 135 years of experience. The website reflects a professional and consistent brand image, targeting automotive industry stakeholders and potential employees. The technical infrastructure is based on WordPress with modern web technologies such as Bootstrap and jQuery, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and sandboxed embedded content, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the website is functional and trustworthy but would benefit from improved privacy and security disclosures.

P

Pactum AI, Inc.

pactum.com

73

Pactum AI, Inc. operates a leading agentic AI platform focused on enterprise procurement automation. Their AI agents autonomously negotiate non-strategic supplier contracts at scale, unlocking significant savings and operational efficiencies for Fortune 500 companies and large enterprises. The company positions itself as a market leader with over half a decade of experience and a strong portfolio of negotiation agents tailored to various procurement needs. Technically, the website is built on WordPress, leveraging modern analytics and consent management tools, hosted via Cloudflare with secure HTTPS enforcement. Security posture is strong with appropriate headers and secure domain registration, though DNSSEC is not enabled. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the website reflects a mature, professional enterprise SaaS business with high trust and credibility.

E

Eesti Disaini Maja / Estonian Design House

estoniandesignhouse.ee

49

Estonian Design House is a platform dedicated to promoting Estonian design and supporting local designers. The website serves as a showcase for Estonian design products and aims to connect designers with a broader audience interested in unique, locally crafted design. The business operates within a niche market focused on design enthusiasts and customers valuing Estonian cultural products. Technically, the website is built on WordPress with SEO optimization via Yoast and includes social media integration, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS, but lacks advanced security headers and explicit security or privacy policies, which could be improved to enhance trust and compliance. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security disclosures.

T

Tartu Loomemajanduskeskus

lmk.ee

40

Tartu Loomemajanduskeskus (LMK) is a well-established creative industries development center and incubator based in Tartu, Estonia, founded in 2009. It focuses on supporting creative enterprises through incubation programs, mentoring, training, and providing rental spaces. The organization targets creative startups and existing businesses in the South Estonia region, aiming to boost innovation and export potential in sectors such as fashion, contemporary art, film, and performing arts. The website reflects a professional and consistent brand presence with active social media engagement and regularly updated news content. Technically, the website is built on WordPress using Elementor and Yoast SEO, integrating modern JavaScript libraries like Swiper.js and jQuery. It employs Google Analytics and Jetpack for visitor tracking and performance monitoring. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Hosting and domain registration are stable and consistent with the business's geographic location. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and formal security or incident response policies. No privacy or cookie policies were found, indicating potential compliance gaps with GDPR requirements. No vulnerability disclosure or security.txt files are present, which could be improved to enhance trust and transparency. Overall, the website is functional, professional, and credible but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.

G

Geo S.T.

geo.ee

48

Geo S.T. is an established Estonian company specializing in geodetic measurements, 3D laser scanning, construction geodesy, and cadastral services. Founded in 2010, it serves clients in energy, transportation, and real estate sectors, offering precise surveying and modeling solutions. The company maintains a professional web presence with clear service descriptions and partner affiliations, targeting construction and industrial clients. Technically, the website is built on WordPress with common libraries like jQuery and Bootstrap, integrating Google Analytics and Google Tag Manager for user tracking. The site is mobile-optimized and moderately performant, though accessibility and SEO could be improved. Security posture is solid with HTTPS and secure forms, but lacks advanced security headers and explicit security policies. Privacy compliance is basic with a cookie policy but no consent mechanism or detailed privacy policy. Overall, the domain registration is consistent and trustworthy, supporting the company's legitimacy.

M

Meta Advisory Group OÜ

metaadvisory.ee

43

Meta Advisory Group OÜ is a professional PR and government relations agency based in Estonia, operating as part of the Rud Pedersen Group. The company offers a broad range of communication services including government relations, reputation management, crisis communication, marketing communication, and digital strategies. The website reflects a mature business with a strong market position, evidenced by its recognition as the Aasta Kommunikatsiooniagentuur 2025 and its presence in multiple European cities. The target audience includes clients seeking expert communication and PR services with a strategic approach. Technically, the website is built on WordPress with modern tools such as Google Tag Manager and Facebook Pixel for analytics and marketing. Performance and mobile optimization are good, with SEO best practices implemented via Yoast SEO. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the company's credibility and business goals.

W

WERMO AS

wermo.ee

40

WERMO AS is an established Estonian furniture manufacturer with over 75 years of experience in crafting high-quality furniture for living rooms, home offices, and dining rooms. The company leverages traditional craftsmanship combined with modern production technologies to meet discerning customer expectations. Their website reflects a medium-sized manufacturing business targeting consumers and businesses seeking premium furniture products. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Contact Form 7, with multilingual support via WPML. The site is hosted likely by Zone Media OÜ, an Estonian registrar and hosting provider. Security-wise, the site uses HTTPS with good SSL configuration and integrates Google reCAPTCHA to protect forms. However, it lacks explicit privacy, cookie, and security policies, as well as vulnerability disclosure mechanisms, which are important for compliance and trust. Overall, the website is professional and functional but could improve its privacy and security transparency.