Security Directory

A-Film Distributie B.V. is a Dutch film distribution company providing a platform for cinema listings, DVD and Blu-ray sales, and film promotion. The website targets film enthusiasts in the Netherlands, offering detailed information on current and upcoming films, trailers, and classic film collections. The business model focuses on film distribution and consumer engagement through digital content and social media channels. Technically, the site is built on WordPress with MooTools and Yoast SEO, indicating a moderate level of digital maturity with room for improvement in mobile optimization and accessibility. Security posture is adequate with HTTPS enabled but lacks visible security headers and published security policies. Privacy compliance is basic with privacy and cookie policies present but no explicit GDPR compliance statements or data protection officer contact. Overall, the site is professional and trustworthy but could enhance security and privacy transparency to improve user trust and compliance.

E

Eaton Group

eatongroup.com

63

Eaton Group is a financial services company specializing in advancing creditor rights and debt collection. The company emphasizes ethical business practices and transparent consumer guidance to help resolve outstanding debt obligations. Their market position is that of an established creditor rights service provider targeting creditors and consumers within the financial services sector. The website is built on WordPress using a professional theme and SEO plugin, indicating a moderate level of digital maturity. However, Google Analytics is present but not configured, and no social media presence is evident. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data reduces domain trustworthiness, though the website content and contact information appear legitimate. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security best practices.

P

PRxDigital

prxdigital.com

52

PRxDigital is a well-established digital marketing and communications agency specializing in PR, branding, social media, crisis management, public affairs, advertising, and targeted networking. With a history dating back to 1975 and a domain registered since 2010, the company serves a diverse clientele primarily in the San Francisco Bay Area and Silicon Valley, focusing on technology and other sectors. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. Security posture is adequate with HTTPS enabled and some security best practices, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies, which poses a compliance risk. Overall, the website is trustworthy and credible but would benefit from improved privacy and security disclosures.

P

Printlanti Oy

printlanti.fi

49

Printlanti Oy is a Finnish print management company specializing in print brokerage and production management services. With over 10 years of experience and a strong network across Finland and the Baltic region, they provide cost-effective print solutions to small and medium-sized enterprises. Their website reflects a professional and consistent brand image, targeting businesses seeking expert print management to optimize resources and reduce costs. Technically, the site is built on WordPress using the Enfold theme, incorporating modern web technologies and marketing tools such as Google Analytics and Survicate. Security posture is solid with HTTPS enabled and standard domain protections, though DNSSEC is not enabled and no explicit security policies or vulnerability disclosures are present. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website is trustworthy and well-positioned in its niche, though improvements in privacy and security transparency are recommended.

F

Frictape Net

frictape.com

67

Frictape Net is a specialized company providing helideck safety solutions primarily targeting the offshore energy and transportation sectors. Established in 2005, the company positions itself as a market leader offering innovative safety products designed to optimize safety and lifetime costs. Their business model focuses on B2B sales and support, catering to clients requiring certified and reliable helideck safety equipment. The website reflects a professional and consistent brand image with good content quality and clear messaging tailored to their niche audience. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies such as jQuery and Slick Carousel for enhanced user experience. The site is hosted with DNS managed via Cloudflare, ensuring reliable performance and security. Mobile optimization and SEO practices are well implemented, although accessibility features are basic. The site uses Cookiebot for comprehensive cookie consent management, indicating a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS with a good SSL configuration and employs standard security headers, though DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security transparency and readiness. Overall, Frictape Net demonstrates a solid digital presence with good business credibility and privacy compliance. Strategic enhancements in security documentation and DNS security could further strengthen their trustworthiness and resilience against emerging threats.

A

AQ Trafotek Oy

trafotek.fi

47

AQ Trafotek Oy is a Finnish company specializing in the manufacturing and supply of inductive electrical components such as power transformers, reactors, and filters. Established in 2010 and now part of the AQ Group, the company serves industrial production, renewable energy, and marine transportation sectors. Their website reflects a professional B2B business model with clear branding and consistent messaging aligned with their market position. Technically, the website is built on WordPress using modern plugins like Yoast SEO and WPBakery Page Builder, hosted likely on Cloudpit infrastructure. The site is mobile-optimized with good SEO practices but lacks some advanced accessibility features and security headers. Performance is moderate, suitable for their target audience. From a security perspective, the site enforces HTTPS and uses secure form plugins, with no visible vulnerabilities or exposed sensitive data. However, it lacks security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No incident response or security policy information is published, indicating room for maturity in security governance. Overall, the website and domain registration data are consistent and trustworthy, with a solid business presence and moderate technical sophistication. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance their security posture and trustworthiness.

N

NJ Production

nj-production.com

53

NJ Production is a well-established, award-winning event and communication agency specializing in creating powerful event experiences globally. The company offers a broad range of services including project management, venue logistics, event communication, content support, technical production, and sustainability consulting. Their market position is strong, supported by a professional portfolio and consistent branding. The website reflects a mature digital presence with multilingual support and integrated marketing tools. Technically, the site is built on WordPress with modern analytics and marketing integrations, hosted behind Cloudflare for performance and security. Security posture is solid with HTTPS, reCaptcha, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear cookie policies and GDPR consent. Overall, the site demonstrates high professionalism and trustworthiness, suitable for corporate clients seeking event services.

M

Marketing Sharks

marketingsharks.ee

51

Marketing Sharks is an established Estonian digital marketing and digitalization service provider founded in 2012. The company offers a broad range of services including digital marketing, SEO, custom and ready-made website and e-commerce solutions, branding, and WordPress development. Their market position is supported by a consistent brand presence, client logos, and active social media channels. Technically, the website is built on WordPress with modern plugins and tracking tools such as Google Analytics and Facebook Pixel, and uses Cloudflare DNS services. Security posture is good with HTTPS enforced, reCAPTCHA on forms, and Wordfence security plugin indications, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience.

In Nomine OÜ is an established Estonian communication and public relations agency founded in 2001, offering effective communication and PR services primarily targeting businesses and organizations. The company positions itself as a creative and experienced agency with a strong local presence and a portfolio of successful projects. The website reflects a professional and consistent brand image with clear messaging in Estonian and English language support. Technically, the website is built on WordPress using modern frameworks and plugins, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. Overall, the website demonstrates a trustworthy and credible business presence with room for enhanced security and compliance documentation.

S

Superangel OU

superangel.io

48

Superangel OU operates as an early stage venture capital fund and company builder focused on technology startups in the Baltics and Nordics. The company targets tech founders raising pre-seed or seed rounds, offering investment tickets typically between €300k and €1M. Their business model centers on leveraging entrepreneurial experience and networks to support scalable tech ventures in AI, robotics, logistics, fintech, and SaaS sectors. The website presents a professional and consistent brand image with clear messaging and portfolio highlights, positioning Superangel as a niche regional VC player with a strong founder-centric approach. Technically, the website is built on WordPress with modern SEO practices including Yoast SEO and structured data (JSON-LD). It uses common web technologies such as jQuery, GSAP for animations, and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and performs moderately well, though accessibility features are basic. No hosting provider is explicitly identified, and DNSSEC is not enabled, which is a minor security gap. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain status clientTransferProhibited, which protects against unauthorized domain transfers. However, security headers are not detected, and there is no visible cookie consent mechanism or published security/incident response policies. No vulnerabilities or exposed sensitive data were found in the content. WHOIS data is consistent with the business claims, showing a domain registered in Estonia since 2017 under the company name Superangel OU, supporting legitimacy. Overall, the website demonstrates a good balance of business credibility, technical implementation, and content quality. Privacy compliance could be improved by adding cookie consent and more explicit GDPR-related disclosures. Security posture would benefit from enhanced HTTP headers and published policies. The risk level is low, with no critical issues detected, making the site trustworthy for its intended audience.

E

European Hematology Association

ehaweb.org

62

The European Hematology Association (EHA) operates a professional website focused on advancing hematology knowledge, collaboration, and education within the European healthcare community. The organization is well-established, with a domain registered since 2000, and positions itself as a leading force in hematology. The website targets healthcare professionals, researchers, and clinicians interested in hematology, offering services such as knowledge sharing and community engagement. The business model is non-profit and educational in nature. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates SEO tools such as Yoast. It employs Cookiebot for GDPR-compliant cookie consent management and Google Tag Manager for analytics. The site is mobile-optimized and demonstrates good accessibility and SEO practices, although performance is moderate. Hosting is provided by Hosting Concepts B.V., and the domain registration details are consistent with the organization's identity. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent with granular user controls. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, and there is no published security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the provided content. The WHOIS data is transparent and consistent, supporting the site's legitimacy. Overall, the website presents a professional and trustworthy digital presence with strong privacy compliance and a solid security posture. Strategic improvements include enabling DNSSEC, publishing security policies, and enhancing security headers to further strengthen the security framework.

E

Eesti Kindlustusmaaklerite Liit

ekml.ee

42

Eesti Kindlustusmaaklerite Liit is a professional association representing leading insurance brokers in Estonia. The organization acts as a liaison between its members and the government, particularly in regulatory matters, providing a unified voice for the insurance brokerage sector. The website serves as an information hub for members and clients seeking insurance brokerage services, offering news, member contacts, and membership information. The site is built on WordPress with modern plugins and SEO optimizations, reflecting a moderate to good level of digital maturity. Security measures include HTTPS and Google reCAPTCHA on forms, but lack explicit security headers and incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy, suitable for its niche audience.

A

AlphaSights

alphasights.com

64

AlphaSights is a leading global knowledge services company founded in 2008, specializing in providing frictionless access to expert knowledge for decision makers across investment funds, consultancies, and businesses. The company operates a proprietary client platform powered by advanced machine learning and a global team of professionals to deliver expert insights efficiently. Their market position is strong, supported by extensive client interactions and a comprehensive compliance program ensuring confidentiality and safety. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates advanced multimedia features such as Lottie animations and Video.js. The site is optimized for performance, mobile responsiveness, and SEO, leveraging multiple analytics and marketing tools including Google Analytics, HubSpot, and Demandbase. Hosting is via AWS Cloudfront CDN, ensuring fast content delivery. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR. However, there is a lack of explicit security headers and no published security.txt or incident response contacts, which are areas for improvement. The absence of WHOIS data for the domain raises some concerns about registration transparency, although the professional presentation and trust indicators mitigate this somewhat. Overall, AlphaSights presents a professional, secure, and privacy-conscious digital presence with minor gaps in security transparency and domain registration data. Strategic enhancements in these areas would further strengthen their security posture and trustworthiness.

P

Proud Engineers

proudengineers.com

48

Proud Engineers is a specialized consulting firm focused on digital innovation, strategy, and governance. The company offers expertise in policy-making, law, architecture, and technology advisory, targeting organizations seeking complex digital transformation solutions. The website positions Proud Engineers as a trusted global partner with strong client testimonials and a professional online presence. Technically, the site is built on WordPress with Elementor, employing modern web technologies and providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and formal privacy or cookie policies. Overall, the website reflects a credible and professional business but would benefit from enhanced privacy compliance and security disclosures.

E

EveryPay

every-pay.com

54

EveryPay operates as a payment gateway service provider offering a merchant portal and risk management tools to facilitate real-time transaction tracking, refunds, and fraud prevention. The website targets merchants and e-commerce businesses primarily in Estonia and the Baltic region, supporting multiple languages including English, Estonian, Latvian, and Lithuanian. The company positions itself as a reliable regional payment service provider with a focus on merchant support and integration ease. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPML for multilingual support. It uses Uikit for styling and includes Google Analytics and Tag Manager for tracking. The site is mobile optimized and has good SEO practices, though accessibility features are basic. Performance is moderate with no major technical issues detected. From a security perspective, the site enforces HTTPS and uses secure forms with nonce tokens. However, it lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. No vulnerabilities or exposed sensitive data were found. The WHOIS data for the subdomain is unavailable, which is typical and not suspicious. Contact information is clearly provided, enhancing trust. Overall, the website demonstrates a solid business and technical foundation with moderate security posture. Strategic improvements in privacy compliance and security headers would enhance trust and compliance. The site is suitable for its target audience but could benefit from enhanced transparency and security best practices.

Harju Elekter is a well-established Estonian company specializing in electrical distribution solutions with over 55 years of experience. The company serves the energy sector and related industries, offering products such as prefabricated substations and electrical infrastructure services. The website reflects a mature business with a strong market presence, including public stock exchange listing and sustainability recognitions. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates analytics and security tools such as Google Analytics and reCAPTCHA. The security posture is solid with HTTPS enforced and cookie consent implemented, though improvements can be made by enabling DNSSEC and adding security headers. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the company's credibility and business operations.

E

Edurus AB

edurus.se

51

Edurus AB operates a professional website focused on providing personalized gravestone design services in Sweden. The company positions itself as a family-owned business offering a simple three-step process to design custom gravestones, targeting individuals seeking memorial solutions. The website demonstrates a moderate level of digital maturity, utilizing WordPress CMS, Gravity Forms for data collection, and integrating marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Bing Ads. Cookie consent is implemented via Cookiebot, indicating awareness of privacy compliance requirements. Security posture is adequate with HTTPS enforced and cookie consent mechanisms, but lacks explicit security headers and visible incident response contacts. The absence of WHOIS data for the domain www.edurus.se raises concerns about domain registration legitimacy, although the website content and branding appear consistent and professional. Overall, the site scores moderately on content quality, technical implementation, security, privacy compliance, and business credibility.

R

Rocksoft

rocksoft.ee

40

Rocksoft is a small Estonian technology company specializing in Oracle E-Business Suite, Oracle NetSuite, and MONITOR ERP solutions. The website is professionally designed using WordPress with modern technologies such as Google Tag Manager and Brizy page builder. The company appears to target businesses seeking ERP and Oracle software implementations. The domain is mature, registered since 2010, and hosted by a known Estonian registrar, indicating legitimacy. However, the website lacks explicit privacy, cookie, and terms of service policies, which impacts privacy compliance. Security posture is moderate with HTTPS enabled and anonymized Google Analytics, but no security headers or vulnerability disclosures are present. Contact information is not explicitly found on the main page, which may affect user trust and business credibility. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures.

S

Smartecon

smartecon.ee

58

Smartecon is an established Estonian company specializing in solar park construction and renewable energy solutions, boasting over 10 years of industry experience. The company targets business clients seeking sustainable and cost-effective solar energy installations. Their market position is strong within Estonia, recognized as builders of some of the largest solar power plants in the country. The website reflects a professional and consistent brand image, with multilingual support and clear service offerings focused on solar energy projects and consulting. Technically, the website is built on WordPress using Elementor and Jet Engine plugins, hosted behind Cloudflare DNS. It employs modern web technologies including Matomo analytics, Google Tag Manager, and Facebook Pixel, all integrated with cookie consent mechanisms. The site is mobile optimized and SEO friendly, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and DNSSEC. From a security perspective, the site uses HTTPS with a good SSL configuration and implements reCAPTCHA v3 to protect forms. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the business history. Overall, the website presents a trustworthy and professional digital presence with solid business credibility. To enhance security posture and compliance, it is recommended to publish privacy and security policies, implement additional security headers, enable DNSSEC, and provide incident response contacts. These steps will improve user trust and regulatory compliance.

R

Reiven Solutions

reiven.eu

47

Reiven Solutions is a small Estonian technology service provider specializing in web-based software, custom IT solutions, hosting, and marketing services. The company targets businesses and organizations seeking tailored web development and IT support. Their website presents a professional and consistent brand image with a focus on quality solutions and client engagement through portfolio showcases and service descriptions. Technically, the site is built on WordPress using the Salient theme and WPBakery page builder, incorporating modern web technologies and responsive design. The use of Matomo analytics and Cookiebot indicates a moderate level of digital maturity with attention to user privacy preferences. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies are lacking. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy and security documentation to improve compliance and user trust.

P

Printon AS

printon.ee

46

Printon AS is a well-established printing company based in Tallinn, Estonia, specializing in a wide range of printing services including books, magazines, catalogs, calendars, and advertising materials. The company positions itself as a comprehensive printing partner offering consultation, repro, printing, binding, post-processing, and logistics services all under one roof. Their market presence is supported by ISO 9001 and ISO 14001 certifications, indicating a commitment to quality and environmental management. The website is professionally designed, multilingual, and provides clear contact information and service descriptions, targeting both business and individual customers in the region. Technically, the website is built on WordPress using the Avada theme and integrates modern web technologies such as Google Analytics, Google reCAPTCHA v3, and Slider Revolution. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be enhanced. Security posture is strong with HTTPS enforced, security headers present, and secure form handling, but lacks a formal security policy or incident response information. Overall, the site is trustworthy and professional with no signs of malicious activity or suspicious behavior. However, improvements in cookie consent mechanisms and formal security disclosures would enhance compliance and user trust. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include implementing cookie consent, publishing security policies, and enhancing accessibility.

Asper Biogene is a specialized genetic testing company offering a broad range of DNA testing services including next-generation sequencing panels, whole exome sequencing, and whole genome sequencing. The company targets healthcare professionals, geneticists, and patients seeking advanced genetic diagnostics. Their market position is supported by multiple certifications such as ISO 15189:2012 and ISO 9001:2015, and a Health Board license, indicating compliance with healthcare standards. The website content is professionally presented with detailed service descriptions and a multilingual interface. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and Google Analytics integrations. The site is mobile optimized and SEO friendly with structured data implemented. Performance is moderate with room for improvement in accessibility features. Security posture is good with HTTPS enforced and no visible sensitive data exposure, but lacks some security headers and cookie consent mechanisms. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy. However, the website's professional content and certifications mitigate some trust issues. No explicit incident response or vulnerability disclosure information is provided, which could be improved to enhance security transparency. Overall, Asper Biogene presents a credible and professional online presence for a healthcare genetic testing provider, but should address WHOIS transparency, cookie consent, and security header implementation to strengthen trust and compliance.

R

Ringtail Studios

ringtail-studios.com

73

Ringtail Studios is a well-established EU-based art development studio specializing in 3D content production and co-development services for the gaming and digital entertainment industries. Founded in 2006 and part of the Magic Media group, the company serves a global clientele including AAA game titles and mobile games. Their key services include game art production, animation, VFX, and cybersecurity, supported by a workforce of over 1000 professionals across 15 worldwide locations. The website reflects a professional and consistent brand image with a focus on showcasing their portfolio and partnerships.

A

AS Ekspress Grupp

egrupp.ee

44

AS Ekspress Grupp is a leading media conglomerate in the Baltic region, specializing in digital and traditional media publishing including web media, newspapers, magazines, and books. The company has a strong market position supported by a large portfolio of subsidiaries across Estonia, Latvia, and Lithuania. Their business model focuses on digital media solutions and services, targeting a broad audience in the Baltic states. The website reflects a mature digital presence with multilingual support and investor relations transparency. Technically, the site is built on WordPress with common plugins for analytics, multilingual content, and cookie compliance. Security posture is solid with HTTPS and reCAPTCHA integration, though some improvements in security headers and library versions are recommended. Privacy compliance is partially addressed with cookie consent but lacks a visible privacy policy. Overall, the site demonstrates high business credibility and professional presentation.

A

Ahola Transport

aholatransport.com

56

Ahola Transport is a well-established Finnish logistics and transport company with over 70 years of experience, operating primarily in the Nordic and Central/Eastern European markets. The company offers a range of services including road transports, green kilometers initiatives, and custom logistics solutions, emphasizing eco-efficiency and digital innovation. The website reflects a professional and modern digital presence with multilingual support and comprehensive service information. Technically, the site is built on WordPress with modern plugins and integrations such as Gravity Forms, Google reCAPTCHA, and Google Tag Manager, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and anti-bot measures on forms, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness with clear contact information and certifications like AEO-status. Strategic recommendations include enhancing security headers, publishing a formal security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

S

Shokkin Group International

shokkin.org

45

Shokkin Group International is a European network of youth organizations focused on supporting innovative development in youth work and education. Established in 2015 and registered in Estonia, it serves as a collaborative platform for small to medium NGOs to foster personal and civic growth among young people. The website is built on WordPress and employs common plugins such as Yoast SEO and Jetpack, hosted on HostGator servers. It features good SEO practices and a cookie consent mechanism compliant with EU regulations. Security posture is adequate with HTTPS enabled and domain protection measures, though lacks advanced security headers and published security policies. Contact information is limited to email addresses, with no phone or physical address provided. WHOIS data shows privacy protection consistent with the organization's profile and domain age aligns with business history. Overall, the site is professional and functional but could improve in privacy compliance and security transparency.

B

Balti Logistika

baltilogistika.com

44

Balti Logistika is a well-established logistics company founded in 2005, providing freight forwarding and supply chain management services primarily in the Baltic countries of Estonia, Latvia, and Lithuania. The company offers a comprehensive range of services including air, ocean, rail, and road freight, as well as special services, VMI, and warehousing. Their market position is regional with a focus on serving businesses requiring logistics solutions in the Baltic region. The website supports multiple languages, indicating a broad target audience within these countries. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates several third-party analytics and advertising tools such as Google Analytics, Facebook Pixel, and Adform. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS enabled and domain protection statuses set, but lacks DNSSEC and security headers, which are recommended improvements. Privacy compliance is weak due to the absence of privacy and cookie policies, and no direct contact emails or phone numbers are visible, relying solely on contact forms. Overall, the website is professional and credible but would benefit from enhanced security and privacy transparency.

C

Convertal OÜ

convertal.ee

46

Convertal OÜ is a well-established Estonian digital marketing agency specializing in a broad spectrum of services including SEO, social media marketing, digital advertising, analytics, and marketing training. The company positions itself as a strategic partner for businesses aiming to enhance their online visibility and achieve measurable business outcomes. Their market position is strong within Estonia and the Baltic region, supported by client testimonials and Google Partner certification. Technically, the website is built on WordPress with modern marketing and analytics integrations such as Google Tag Manager, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though improvements in security headers and formal security policies are recommended. Overall, the website demonstrates professionalism, good user experience, and trustworthy business credibility.

A

Amstelhoorn Notariaat

amstelhoorn.nl

38

Amstelhoorn Notariaat is a specialized notarial service provider focusing on leasehold (erfpacht) matters in Amsterdam. The company positions itself as an expert with comprehensive process control, efficient service, and client communication. The website reflects a small-sized, niche business with a clear market focus on Amsterdam residents and entities requiring leasehold notarial services. Technically, the website is built on WordPress with standard SEO and analytics tools, including Google Analytics, Facebook Pixel, and Bing UET, indicating a moderate level of digital maturity. The site is mobile optimized and professionally designed, providing a good user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is basic, with no visible cookie consent mechanism or detailed privacy policy. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

A

Associazione Joint

associazionejoint.org

48

Associazione Joint is a well-established Italian non-profit organization based in Milan, specializing in international youth mobility, volunteering, and cultural exchange programs. Founded in 2003, it has a strong market position as a leader in its sector, offering a variety of services including European Voluntary Service, international work camps, language courses, and support for other non-profit organizations. The website reflects a professional and consistent brand image with good content quality and clear navigation aimed at young people seeking international experiences. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Tag Manager, and various marketing and privacy plugins. The hosting is provided by Hosting Concepts B.V., with Cloudflare DNS but DNSSEC is not enabled. Security posture is good with HTTPS and domain transfer protections, though some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service on the main site. Overall, the site is trustworthy and professionally maintained but could improve transparency on privacy and security policies.

E

E-riigi Akadeemia

ega.ee

38

The e-Governance Academy (eGA) is a well-established Estonian organization specializing in digital transformation and e-governance advisory services. With over 20 years of experience and engagement in 145 countries, eGA positions itself as a center of excellence for governments and public administrations seeking to enhance prosperity and openness through digital means. The website reflects a professional and comprehensive digital presence, featuring rich content including conferences, podcasts, and insights relevant to its target audience. Technically, the site is built on WordPress with modern performance optimizations and uses Google Tag Manager and CookieYes for analytics and consent management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security best practices like DNSSEC and security headers could be improved. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy or terms of service pages detected. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

D

Datafruit

datafruit.ee

57

Datafruit is a small Estonian technology company specializing in accelerating business data evolution through analytics and optimization services. Their website reflects a professional B2B service provider targeting businesses interested in supply chain and cost dynamics analysis. The company has been established since 2014, with a consistent domain registration and hosting setup. Technically, the website is built on WordPress with Bootstrap and jQuery, integrating modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and Cookiebot for GDPR-compliant cookie management. Security posture is good with HTTPS enabled and bot protection via reCAPTCHA, though some security headers could be improved. Privacy compliance is well addressed through detailed cookie consent mechanisms and a linked cookie policy. However, explicit contact information and security policies are not present, which could be enhanced to improve trust and compliance. Overall, the website is functional, moderately performant, and professionally presented, with room for improvement in accessibility and security transparency.

M

Mistra-Autex AS

mistra.ee

62

Mistra-Autex AS is a well-established Estonian manufacturing company specializing in high-quality non-woven and tufted carpet products primarily for the automotive industry, with additional markets in furniture and footwear. The company has a strong market position supported by multiple industry certifications and awards, a medium-sized workforce, and a turnover of approximately 27 million Euros. Their website reflects a professional digital presence built on WordPress with Elementor, optimized for performance and mobile use. Security posture is solid with HTTPS, security headers, and reCAPTCHA on forms, though explicit security policies and cookie consent mechanisms are absent. Overall, the website and domain registration data indicate a legitimate and credible business with room for improvement in privacy compliance and security transparency.

S

ScanMarine Estonia OÜ

scanmarine.ee

46

ScanMarine Estonia OÜ is a small Estonian company specializing in the sale and rental of sea containers along with comprehensive transport and logistics services including maritime, air, road, and rail transport. Established in 2012, the company targets both business and consumer markets within Estonia and the broader EU region. Their website reflects a professional and consistent brand presence with multilingual support and e-commerce capabilities. Technically, the site is built on WordPress with WooCommerce and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and PixelYourSite, all managed with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The domain registration is consistent and long-standing, supporting the legitimacy of the business. Overall, the website demonstrates good digital maturity, compliance, and trustworthiness.

M

Motieka & Audzevičius

tark.legal

50

Advokaadibüroo TARK OÜ is a well-established full-service law firm based in Estonia, operating since 1991. The firm offers a broad range of legal services including corporate law, mergers and acquisitions, banking and finance, competition regulation, dispute resolution, energy, real estate, IT, labor, and tax law. Positioned as a leader in the Baltic legal market, TARK has received multiple industry recognitions and maintains a strong client testimonial presence. Their target audience primarily consists of businesses and professionals requiring comprehensive legal support in Estonia and the Baltic region. Technically, the website is built on WordPress using modern plugins such as Yoast SEO Premium and WPBakery Page Builder. It integrates multiple tracking and analytics tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good SEO practices, though performance is moderate. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, but lack advanced security headers and explicit security policies. The security posture is solid but could be improved by implementing additional HTTP security headers and publishing incident response and security policies. Privacy compliance is supported by a cookie consent mechanism and a privacy policy page, though terms of service and vulnerability disclosure information are absent. WHOIS data confirms domain legitimacy and consistency with the business location and history. Overall, the website reflects a professional and credible legal services provider with a mature digital presence. Strategic improvements in security policies and technical hardening would enhance trust and compliance further.

E

eHost OÜ

royal.ee

40

Aktiva.ee is an Estonian business information portal focused on supporting entrepreneurs at various stages, including startups, operating companies, and those expanding internationally. The site offers practical guidance, resources, and educational content related to business planning, management, marketing, accounting, legal frameworks, and international trade. The portal positions itself as a comprehensive guide for business success in Estonia and beyond. Technically, the website is built on WordPress, leveraging common plugins such as Google Analytics and Google reCAPTCHA for security and tracking. Hosting and DNS services are provided by eHost OÜ and Cloudflare respectively, ensuring reliable infrastructure. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit HTTP security headers and does not provide visible privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is available, indicating room for improvement in security transparency and readiness. Overall, the website is a well-structured, content-rich portal with moderate technical maturity and security posture. To enhance trust and compliance, it should implement comprehensive privacy and cookie policies, improve security headers, and provide clear contact and incident response information.

H

Hookah

hekkpipe.com

56

Hekkpipe.com appears to be a WordPress-based website branded as 'Hookah' with minimal content and limited business information. The domain is well-established since 2013 and uses Cloudflare DNS services, indicating a moderate level of technical infrastructure. The website employs standard web technologies including Bootstrap and jQuery, but lacks comprehensive privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS enabled and domain-level protections, but the absence of DNSSEC and security headers suggests room for improvement. Overall, the site shows basic digital maturity but requires enhancements in privacy compliance, security best practices, and business transparency to improve trustworthiness and professional standing.

S

SDDNL

sdd.nl

69

SDDNL is a specialized distributor of high-quality print finishing machinery and materials based in the Netherlands. The company offers a range of products including binders, laminators, cutters, creasers, and folders, targeting professional print finishing businesses. Their website reflects a strong market position with partnerships with well-known brands and a focus on quality and technical innovation. The digital infrastructure is built on WordPress with WooCommerce, enhanced by performance and GDPR compliance plugins, indicating a mature and professional online presence. Security posture is solid with HTTPS, security headers, and spam protection, though there is room for improvement in publishing dedicated security policies and incident response information. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, supporting the company’s credibility and trustworthiness in its niche market.

G

gotoAndPlay

gotoandplay.ee

57

gotoAndPlay is a small, agile web development team based in Estonia, founded in 2013. They specialize in creating web applications, websites, and MVPs using modern technologies such as React, Laravel, and WordPress. The company emphasizes close collaboration with clients to deliver result-driven digital solutions. Their market position is that of a niche, high-quality service provider focused on innovation and client partnership. Technically, the website is built on a modern stack with good performance, mobile optimization, and SEO best practices. Security posture is strong with HTTPS, security headers, and privacy compliance including cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site reflects a professional and trustworthy business with a clear focus on privacy and user experience.

V

Virumaa Muuseumid

svm.ee

41

Virumaa Muuseumid is a regional museum network based in Estonia, focusing on cultural heritage, history, and educational services related to the Virumaa region. The website serves as a portal to various museums including Rakvere linnus, Palmse mõis, and others, targeting visitors interested in history and culture. The business operates primarily as a government or non-profit entity with a small organizational size and a recent establishment date in 2022. Technically, the website is built on WordPress, leveraging common plugins for SEO, analytics, and cookie management, hosted by Zone Media OÜ. The site is well-structured with multilingual support and good accessibility features. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, though DNSSEC is not enabled and security headers are not explicitly confirmed. Privacy compliance is strong with GDPR-aligned cookie consent and privacy policy. Overall, the site is professional, trustworthy, and serves its cultural mission effectively.

F

FOB Solutions OÜ

fob-solutions.com

50

FOB Solutions OÜ is a technology service provider specializing in software development, quality assurance, digitized business operations, and Elastic consulting services. The company targets businesses seeking expert technology solutions and positions itself as a niche provider with a focus on Elastic technologies and digitized operations. The website is professionally designed, mobile-optimized, and uses WordPress CMS with modern SEO and analytics tools integrated. The presence of a comprehensive cookie consent mechanism and privacy policy indicates good privacy compliance. Security posture is strong with HTTPS enforced and no exposed sensitive data, though additional security headers and policies could enhance protection. The absence of WHOIS data is a concern for domain legitimacy but is offset by the professional website and active social media presence. Overall, the site demonstrates a mature digital presence with room for improvement in transparency and security documentation.

A

Access Partnership

accesspartnership.com

60

Access Partnership is a well-established public policy consultancy specializing in technology and innovation sectors, founded in 1999. The company provides comprehensive advisory services including policy analysis, regulatory strategy, compliance, advocacy campaigns, and government advisory. Their market position is strong as a leading global consultancy with a focus on helping businesses and governments navigate complex regulatory environments. Technically, the website is built on WordPress with modern plugins and integrations such as HubSpot forms, Google Tag Manager, and Cloudflare DNS, delivering fast performance and excellent mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is currently basic, lacking visible privacy and cookie policies or consent mechanisms. Overall, the website demonstrates high professionalism and business credibility, supported by trust signals such as awards and active social media presence.

A

AS Arstikeskus Confido

ortopeediaarstid.ee

43

Ortopeediaarstid, now part of AS Arstikeskus Confido since April 2024, is a well-established orthopedic healthcare provider in Estonia offering a comprehensive range of modern orthopedic treatments including arthroscopy, endoprosthetics, physiotherapy, and sports medicine. The website targets patients seeking specialized orthopedic care and provides detailed service descriptions, appointment booking options, and patient information in multiple languages. The business is positioned as a reputable healthcare provider with a medium-sized operation and a clear focus on quality patient care. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and reCAPTCHA v3 for form security. The site is mobile-optimized, SEO-friendly, and uses structured data for enhanced search engine visibility. Hosting is managed by Zone Media OÜ, a known Estonian hosting provider. Performance is moderate with good accessibility and navigation. From a security perspective, the site enforces HTTPS, integrates reCAPTCHA to protect forms, and uses Wordfence security plugin scripts. However, it lacks explicit security headers and published security policies or incident response contacts. Privacy compliance is strong with GDPR-aligned privacy and cookie policies and a clear cookie consent mechanism. Contact information is comprehensive and professionally presented. Overall, the website demonstrates a solid security posture and business credibility with room for improvement in security policy transparency and accessibility. The domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance.

H

Heidi Park Kondiiter

kondiiter.ee

44

Heidi Park Kondiiter is a small Estonian bakery business operating since 2010, specializing in retail and custom cakes including gluten-free options. The website is built on WordPress with WooCommerce, providing an e-commerce platform and rich content including product descriptions and Instagram integration. The business has announced permanent closure effective June 13, 2025. Technically, the site uses modern web technologies and maintains good SSL security, but lacks explicit privacy and security policies. Contact information is clearly presented, enhancing business credibility. Security posture is adequate but could be improved with additional headers and published policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

V

Vecta Design

vectadesign.com

56

Vecta Design is a specialized interior solutions company focusing on stretch ceilings, lighting, acoustic, and smart air systems. Established in 2009, it positions itself as a market leader offering high-quality products and installation services to residential and commercial clients. The website reflects a professional and modern digital presence built on WordPress with WooCommerce, showcasing products and projects effectively. Technically, the site uses modern plugins and frameworks, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and Cloudflare DNS, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is legitimate and trustworthy but would benefit from enhanced privacy and security practices.

S

SSH - Master Planning, Infrastructure, Building Design and Construction Supervision.

sshic.com

43

SSH is a well-established international architecture and engineering consultancy firm with a strong presence across the GCC and Middle East & Africa regions. Founded in 1961, the company offers a comprehensive range of services including building design, construction supervision, infrastructure design, and master planning. The firm is recognized as a top player in its industry, ranked 95 globally by ENR in 2024 and among the top 10 fee-earning architects in the Middle East. Their target audience includes clients seeking high-quality architectural and engineering consultancy services in the MEA region. The website reflects a professional and consistent brand image with good content quality and clear navigation.

L

Leden Group

favor.ee

55

Leden Group Oy is a Finnish manufacturing company specializing in metal-based contract manufacturing, steel service center operations, and cold roll formed steel profiles. The company is positioned as a leading partner in the Baltic region and is part of the HANZA Group, which supports its growth and market presence. The website reflects a professional and modern digital presence built on WordPress and Elementor, with integrated consent management and analytics tools. Security posture is solid with HTTPS, domain locking, and consent mechanisms, though some security policy documentation and incident response contacts are missing. Overall, the website is trustworthy and well-structured, supporting the company's B2B manufacturing business model effectively.

T

triOS College Business Technology Healthcare Inc.

trios.com

69

triOS College is a well-established private career college in Ontario, Canada, specializing in hands-on education and training across multiple faculties including business, technology, healthcare, law, supply chain, and gaming & design. With over 40,000 graduates since its founding in 1992, triOS College operates multiple campuses and offers online learning options, positioning itself as a leading career-focused educational institution in the region. The website reflects a professional and comprehensive approach to student engagement, including bursaries, career services, and a variety of learning modalities. Technically, the website is built on WordPress and leverages modern web technologies such as Google Tag Manager, Google Analytics, LiveChat, and reCAPTCHA for security and user interaction. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Security posture is strong with HTTPS enforced and use of anti-bot measures, though improvements like DNSSEC and explicit security headers could enhance protection further. From a security and compliance perspective, triOS College maintains a comprehensive privacy policy that aligns with GDPR requirements, though it lacks a cookie consent mechanism. Contact information is abundant and clear, but no explicit incident response or vulnerability disclosure policies are published. The domain registration is consistent with the business history, showing long-term stability and legitimacy. Overall, triOS College's digital presence is professional, trustworthy, and well-maintained, supporting its market position as a reputable career college. Strategic recommendations include enhancing DNS security, implementing cookie consent for privacy compliance, publishing vulnerability disclosure information, and strengthening security headers to further improve the security posture.

P

Pilvio

astrecdata.com

70

Pilvio is an Estonian cloud platform founded in 2017, offering simplified cloud services such as virtual server hosting and S3-compatible object storage. Positioned as a local alternative to global cloud providers, Pilvio targets Estonian businesses and IT professionals seeking reliable and easy-to-use cloud infrastructure with data residency in Estonia. The website is built on WordPress using Elementor and Yoast SEO, indicating a moderate level of digital maturity with good SEO and mobile optimization. Security posture is basic, with HTTPS enabled but lacking advanced security headers and explicit privacy or cookie policies. No direct contact information or incident response details are published, which may impact user trust and compliance. Overall, Pilvio presents a professional and consistent brand image with moderate trustworthiness but would benefit from enhanced security and privacy compliance measures.

G

Geenius Meedia

geenius.ee

34

Geenius.ee is a well-established Estonian media platform operated by Geenius Meedia, focusing on delivering fact-based, understandable, and useful content across various domains including technology, automotive, finance, health, and lifestyle. The platform operates multiple niche subdomains and offers services such as news articles, podcasts, e-commerce, and subscription content, positioning itself as a leading media outlet in Estonia. Technically, the website is built on WordPress with WooCommerce integration, leveraging modern advertising and analytics tools such as Google Tag Manager and Facebook Pixel, and is hosted behind Cloudflare DNS for performance and security benefits. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and vulnerability disclosure policies are absent. The domain registration data aligns well with the business claims, indicating legitimacy and consistency. Overall, the website demonstrates good digital maturity, professional content quality, and a trustworthy online presence.