Security Directory

S

Smart MasterKey

blelocking.com

57

Smart MasterKey is a technology company specializing in cloud-based access control solutions that unify mobile smart keys with property systems. The company offers a SaaS platform with features such as digital access administration, multiple access types, integration with existing security infrastructure, and white-label options. Positioned as an innovator with TÜV SÜD certifications and industry awards, Smart MasterKey targets businesses and organizations across sectors including energy, real estate, hospitality, and critical infrastructure. The website demonstrates a high level of professionalism, clear navigation, and multilingual support, reflecting a mature digital presence for a company founded in 2024. Technically, the website is built on WordPress hosted on Amazon AWS infrastructure, utilizing modern JavaScript libraries and analytics tools such as Google Analytics and HubSpot. Performance and mobile optimization are good, with SEO best practices implemented. Security posture is solid with HTTPS enforced and no exposed sensitive data, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is addressed with clear privacy and cookie policies and consent mechanisms. Overall, the security posture is strong but could be enhanced by publishing explicit security policies and incident response contacts, enabling DNSSEC, and adding vulnerability disclosure mechanisms. The domain registration is consistent with the company's founding timeline and shows no suspicious patterns, supporting legitimacy. Strategic recommendations include improving DNS security, enhancing transparency around security policies, and continuing to build trust through certifications and clear contact channels.

K

Keemilise ja Bioloogilise Füüsika Instituut

kbfi.ee

53

Keemilise ja Bioloogilise Füüsika Instituut (KBFI) is an established interdisciplinary research institution based in Estonia, focusing on fundamental and applied research in materials science, particle physics, informatics, and health and environmental sciences. The website reflects a government-affiliated entity with a clear institutional presence, supported by EU-funded projects and collaborations with academic partners such as TalTech. The site targets researchers, academics, and the scientific community, providing news, contact information, and research services. Technically, the website is built on WordPress with Bootstrap and jQuery, integrating Google Maps and FontAwesome for enhanced user experience. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is enforced, and cookie consent mechanisms are implemented with detailed cookie categories, although some security headers and policies could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and trustworthy online presence. Overall, the website scores well on business credibility and technical implementation but could enhance privacy compliance by publishing explicit privacy and terms of service policies.

V

Veriff

veriff.me

79

Veriff is a leading AI-powered identity verification company providing highly automated solutions for fraud prevention, compliance, and customer trust. Their platform supports a wide range of verification services including document verification, biometric authentication, age validation, and AML screening. The company targets global businesses across multiple industries such as financial services, e-commerce, and human resources. The website demonstrates a mature digital presence with modern technologies, strong branding, and comprehensive content. Privacy and cookie policies are implemented with consent mechanisms, reflecting good compliance practices. However, the absence of public WHOIS data is notable and warrants further verification. Overall, Veriff presents a professional and trustworthy online presence aligned with its market position.

F

FINEST AS

finestmedia.ee

53

FINEST AS is an established Estonian technology company specializing in digital and IT solutions with over 20 years of experience. Their business model focuses on software development, e-commerce platforms, and practical business solutions, serving both government and private sector clients. The company maintains a professional online presence with multilingual support and active social media channels. Technically, the website is built on WordPress using modern plugins and frameworks, optimized for performance and SEO, though some accessibility features are basic. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks published security policies or incident response information. Overall, the website reflects a credible and professional business with room for improvement in security transparency and contact information clarity.

U

Unique Hotels Group

uhotelsgroup.com

47

Unique Hotels Group operates a small portfolio of lifestyle hotels in Estonia, focusing on boutique hospitality experiences with historical ambiance and modern amenities. Their services include hotel accommodations, dining, spa treatments, seminars, and gift cards, targeting tourists and business travelers. The website is professionally designed using WordPress with modern technologies and supports multiple languages. Privacy and cookie policies are implemented, and contact information is clearly provided. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, though the website content and business information appear authentic. Security posture is generally good with HTTPS enforced, but security headers are missing, and no incident response or vulnerability disclosure information is provided. Overall, the website is functional, trustworthy, and well-positioned in the hospitality market in Estonia.

A

AS Hekotek

hekotek.ee

45

AS Hekotek is a well-established Estonian manufacturing company specializing in equipment and technological solutions for sawmills, pellet plants, and wood and wood pellet boiler houses. With over 30 years of market presence, 155 employees, and a broad international footprint, the company serves industrial clients primarily in the woodworking and bioenergy sectors. Their product portfolio includes log sorting lines, conveyor systems, pellet plants, and aspiration systems, positioning them as a key player in their niche. The website reflects a professional and consistent brand image with comprehensive business information and multilingual support. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, enhanced with modern plugins such as Rank Math SEO and CookieYes for privacy compliance. The site leverages Cloudflare for DNS and CDN services, ensuring good performance and security. Mobile optimization and SEO practices are well implemented, though accessibility features are basic. Analytics and tracking are managed via Google Analytics and Tag Manager, with a cookie consent mechanism in place. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers like CSP or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, showing a domain registered since 2010 under ALMIC OÜ, matching the Estonian business location. No WAF or blocking mechanisms interfere with content accessibility. Overall, AS Hekotek's digital presence is solid, reflecting a mature business with good technical infrastructure and privacy compliance. Security posture is adequate but could be improved with additional headers and policies. The site effectively supports business credibility and user trust.

S

SecureOps

secureops.com

68

SecureOps is a Canadian-based boutique cybersecurity service provider with over 25 years of industry experience, offering managed security services including 24/7 SOC monitoring, security infrastructure management, vulnerability management, and professional services. The company emphasizes personalized, collaborative, and scalable cybersecurity solutions tailored to enterprise clients across multiple sectors globally. Their market position is strengthened by a SOC 2 Type 2 certification and a strong reputation for quality service delivery. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, HubSpot, and multiple marketing and tracking tools. The site is well-optimized for SEO and mobile devices, with good performance and accessibility features. Hosting and domain registration are consistent with the business claims, with Amazon Registrar as the registrar and a domain age of over 20 years. Security posture is strong with HTTPS enforced, use of reCAPTCHA on forms, and no visible sensitive data exposure. However, DNSSEC is not enabled and security headers are not explicitly detected, indicating room for improvement. Privacy compliance is good with a clear privacy policy and cookie consent mechanism, though no explicit GDPR statement or data retention policies were found. Overall, SecureOps presents a professional and trustworthy online presence with comprehensive service offerings and solid technical infrastructure. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would further enhance their security posture and trustworthiness.

Smarten Logistics AS operates as the largest third-party logistics (3PL) service provider in Estonia, offering comprehensive supply chain solutions to businesses seeking to optimize their logistics operations. The company positions itself as a key player in the Estonian transportation sector, targeting local enterprises requiring efficient logistics services. The website reflects a mature digital presence with professional design and consistent branding, supported by structured data and social media integration. Technically, the site is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and analytics tools such as Google Analytics and Facebook Pixel. Security measures include HTTPS enforcement and a robust cookie consent mechanism via Cookiebot, demonstrating compliance with GDPR consent requirements. However, the absence of explicit privacy policies, terms of service, and incident response information represents a compliance gap. Overall, the website is professional and trustworthy, with a good security posture but room for improvement in privacy and legal disclosures.

G

GT Tarkvara

soft.ee

37

GT Tarkvara is a well-established Estonian technology company specializing in software and cloud solutions, with over 25 years of market presence. The company positions itself as the largest software and related services provider in Estonia, targeting businesses and educational institutions. Their offerings include cloud solutions, software licensing, consulting, implementation, and ongoing support. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the website is built on WordPress with a modern tech stack including Gravity Forms, Google Analytics, Google Tag Manager, and LinkedIn Insight Tag. Hosting is managed via Azure DNS, indicating a reliable infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search visibility. From a security perspective, the site uses HTTPS with good SSL configuration and employs reCAPTCHA v3 to protect forms. However, explicit security headers and published security policies are absent, and no incident response or vulnerability disclosure information is provided. Privacy compliance is partially addressed with a privacy and cookie policy present, but no active consent mechanism is implemented. Overall, GT Tarkvara's website demonstrates a strong business credibility and technical foundation with room for improvement in security policy transparency and privacy compliance mechanisms.

Metus Laenud is a small Estonian finance-focused informational website providing content about various loan types including quick loans, small loans, and general loans. The site targets Estonian-speaking individuals seeking financial solutions and loan information. The business model is content-driven, relying on informational articles rather than direct financial services. The website is built on WordPress, utilizing common plugins such as Contact Form 7 and Rank Math SEO, hosted behind Cloudflare DNS services. The technical infrastructure is modern and moderately performant with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and incident response information. Privacy compliance is poor due to absence of privacy and cookie policies. The domain registration data is suspicious due to a future creation date and lack of registrant details, which impacts overall trustworthiness. Strategic improvements in privacy compliance, security policies, and business transparency are recommended.

K

Krabu

krabugrupp.ee

51

Krabu is an established Estonian IT services company specializing in software development, project management, UX/UI design, and AI solutions. The company serves a diverse clientele including public sector entities and private businesses, emphasizing innovation and quality, supported by ISO 9001 certification. Their website reflects a professional digital presence with clear service offerings and project references. Technically, the site uses WordPress CMS with modern plugins and SEO tools, delivering a good user experience and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks some advanced security headers and explicit privacy and cookie policies. Overall, the company demonstrates strong business credibility and technical maturity, with room for improvement in privacy compliance and security transparency.

S

Softrend

softrend.ee

46

Softrend is an established Estonian furniture company specializing in sofas, beds, and home accessories, with a strong emphasis on sustainability and quality craftsmanship. The company operates a professional e-commerce website built on WordPress, featuring modern technologies such as Google Tag Manager, reCAPTCHA, and performance optimizations via WP Rocket. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security posture is strong with HTTPS and bot protection, but could be improved with additional security headers and a vulnerability disclosure policy. Overall, the domain registration data supports the legitimacy of the business, and the website reflects a credible and professional retail operation.

B

BB Finance OÜ

raha24.ee

63

Raha24, operated by BB Finance OÜ, is an Estonian online lending platform specializing in unsecured loans up to 10,000 EUR with quick approval processes. The company targets individuals in Estonia seeking fast and reliable credit solutions. The website demonstrates a mature digital presence with a domain registered since 2010, consistent with the business's operational history. Technical infrastructure is based on WordPress with modern SEO and consent management tools, indicating a moderate to good level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers appear missing. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with comprehensive privacy and cookie policies and GDPR-aligned consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for its target market.

H

Heateo Sihtasutus

heategu.ee

42

Heateo Sihtasutus operates as a non-profit organization in Estonia, focusing on promoting social change and charitable activities. The website serves as a platform to engage the Estonian community in good deeds and social initiatives. The organization has an established presence since 2010, supported by a professionally designed website built on WordPress and hosted by a reputable Estonian provider. The technical infrastructure is modern and secure, with HTTPS and security headers properly configured. However, the site lacks visible privacy and cookie policies, which impacts its compliance posture. No explicit contact information or incident response details are provided, limiting direct communication channels. Overall, the website demonstrates a solid business credibility and technical foundation but requires improvements in privacy compliance and transparency to enhance trust and regulatory adherence.

A

AS Kevelt

kevelt.ee

41

AS Kevelt is an established Estonian pharmaceutical company specializing in the manufacturing, resale, and subcontracting of pharmaceuticals. The company emphasizes scientific approaches and strict quality controls to produce original and generic medicines, with ongoing research and innovation efforts to support long-term growth. The website targets healthcare industry stakeholders, partners, and investors, presenting a professional and consistent brand image with multilingual support in English, Russian, and Estonian. The business model focuses on pharmaceutical production and related services, positioning AS Kevelt as a reputable player in the Estonian healthcare sector. Technically, the website is built on WordPress CMS using a modern tech stack including Bootstrap, jQuery, Google Maps API, and several plugins such as Yoast SEO and Contact Form 7. The site is mobile-optimized with good SEO practices and moderate performance. Hosting and domain registration are managed by Zone Media OÜ, a legitimate Estonian registrar, with the domain active since 2010, aligning with the company's history. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA v3 for form protection. However, it lacks several security headers and does not publish a security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial, with no cookie consent mechanism or detailed privacy policy visible, which could be improved to meet GDPR standards fully. Overall, AS Kevelt's website demonstrates a solid business presence with good technical implementation and a moderate security posture. Strategic improvements in privacy compliance and security policy transparency would enhance trust and regulatory adherence, supporting the company's professional image and operational security.

H

HELMES

helmes.ee

74

Helmes is a well-established software development company specializing in custom software solutions, digital transformation, and consulting services. With over 30 years of experience and a global presence spanning 20 offices, Helmes serves more than 500 international clients including major organizations such as Airbus, Telia, OECD, and CERN. Their service portfolio includes mobile app development, legacy software modernization, data analytics, design, and cybersecurity services, positioning them as a comprehensive digital innovation partner for enterprises. Technically, the website is built on WordPress with modern SEO practices implemented via Yoast SEO. It integrates multiple analytics and consent management tools such as Google Analytics, Microsoft Clarity, Google Tag Manager, and Conseno for GDPR compliance. The site is mobile-optimized, accessible, and demonstrates good performance, although some security headers are not explicitly detected. The company holds ISO certifications (27001, 9001, 14001), reflecting a strong commitment to security and quality management. From a security perspective, Helmes employs HTTPS, Google reCAPTCHA, and a consent management platform to protect user data and ensure compliance. However, the absence of WHOIS registration data and lack of visible incident response contacts or security.txt file slightly reduce the overall trust score. No critical vulnerabilities or exposed sensitive data were detected in the analysis. Overall, Helmes presents a professional, trustworthy, and technically mature digital presence suitable for enterprise clients. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to improve trust and compliance further.

P

Proekspert

proekspert.ee

65

Proekspert is an established technology company founded in 2005, specializing in full-cycle software services for device and machine manufacturers. Their offerings include smart product development, device-to-cloud connectivity, and digital services, positioning them as a key player in digital business transformation within the technology sector. The company targets B2B clients, particularly manufacturers seeking to enhance their products with software and connectivity solutions. Technically, the website is built on WordPress with multilingual support, leveraging modern tools such as Google Analytics, Google Tag Manager, and Cookiebot for analytics and privacy compliance. The site demonstrates good design quality, mobile optimization, and SEO practices, although accessibility features are basic. Security-wise, the site enforces HTTPS, uses clientTransferProhibited domain status, and implements cookie consent mechanisms, but lacks DNSSEC and explicit security headers. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a mature digital presence with room for improvement in security policies and contact transparency.

E

East West Connection – Official Website

ewcmeetings.com

48

East West Connection's website is a WordPress-based site using the Astra theme and Divi builder compatibility, hosted via GoDaddy.com, LLC. The domain is mature, registered since 1998, indicating a long-standing presence. However, the website content is minimal, lacking critical business descriptions, contact information, and privacy or cookie policies. Technically, the site uses modern CMS technologies but lacks advanced security headers and comprehensive privacy compliance mechanisms. The security posture is basic with HTTPS enabled but missing other best practices. Overall, the site presents a low level of trustworthiness and professionalism due to missing policies and contact details, which could impact user confidence and regulatory compliance.

H

Hotel Telegraaf

telegraafhotel.com

55

Hotel Telegraaf is a luxury 5-star hotel located in Tallinn’s Old Town, operating under the Marriott Autograph Collection brand. The hotel offers upscale accommodation, spa services, fine dining at Restaurant Tchaikovsky, and event hosting facilities. It targets luxury travelers and business guests seeking premium hospitality experiences. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, the site is built on WordPress with modern libraries and SEO best practices, supported by Google Analytics and cookie consent mechanisms ensuring GDPR compliance. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers could be improved. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and registration transparency, which impacts overall business credibility. Strategic verification of domain registration is recommended to reinforce trust. Overall, the site demonstrates a solid business and technical foundation with room for security and compliance enhancements.

T

Tammiste Personalibüroo OÜ

tammistepersonal.ee

47

Tammiste Personalibüroo OÜ is an established Estonian recruitment and training company with over 25 years of experience. The company specializes in recruitment services, training programs, emotional intelligence assessments, coaching, and outplacement services. Their website reflects a professional and consistent brand image, targeting Estonian businesses and job seekers. The technical infrastructure is based on WordPress with Elementor, leveraging modern web technologies and tracking tools such as Google Tag Manager and Facebook Pixel. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though some security headers are missing. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service detected. Overall, the website is trustworthy and well-positioned in its market segment, though improvements in privacy and security documentation are recommended.

B

BCS Itera

itera.ee

38

BCS Itera is a medium-sized Estonian technology company specializing in consulting and implementing business software solutions including ERP, HRM, CRM, and BI systems. The company has a solid market position in the Baltic region, supported by partnerships and certifications such as the LS Retail Platinum Partner status. Their website reflects a professional and consistent brand image with good content quality and active client engagement. Technically, the site is built on WordPress with modern SEO and analytics tools, and it demonstrates good performance and mobile optimization. Security posture is strong with HTTPS and consent management in place, though explicit security headers and policies could be improved. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

P

PPA

ppa.co.uk

59

PPA is a UK-based media organization with a long-established online presence dating back to 1996. The website is professionally designed using WordPress and Elementor, targeting media professionals and industry stakeholders. The business model appears to focus on membership and industry services within the UK media sector. Technically, the site employs modern CMS and SEO tools, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response information are absent. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy or terms of service. Overall, the site is legitimate and trustworthy but could improve transparency and compliance documentation.

F

Fontes PMP OÜ

fontes.ee

47

Fontes PMP OÜ is a well-established Estonian company specializing in talent management, recruitment, mentoring, and consulting services. With 35 years of experience, it holds a strong market position as a trusted partner for organizations seeking to develop and retain talent. The website reflects a professional and comprehensive digital presence, leveraging WordPress CMS and modern web technologies to deliver a fast, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms in place, though explicit security policies and incident response details are absent. Overall, the site demonstrates high business credibility and privacy compliance, supporting Fontes' reputation as a leading talent management consultancy in Estonia.

DF / DESIGN FACTORY is a small Estonian consulting and design firm established in 1992, specializing in innovation acceleration, brand and business model overhauls, and product and service design. The company targets corporate intrapreneurship teams and businesses seeking transformative growth. Their website is built on WordPress with modern plugins such as Elementor and Yoast SEO, reflecting a moderate level of digital maturity. The site is well-designed, mobile-optimized, and uses privacy-respecting analytics. Security posture is adequate with HTTPS enabled but lacks explicit security headers and formal privacy and cookie policies. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security governance. Overall, the website is professional and trustworthy, with a domain registration consistent with the business profile.

R

Responda Group

h1.se

46

Responda Group is a Swedish telecommunications service provider specializing in customer service and answering services, handling over 10 million customer contacts annually for more than 3,500 clients. The company consolidates several subsidiaries including Kalix Tele24, Personlig Svarsservice, Call4U, K2C, and H1 Communication, positioning itself as a significant player in the Nordic customer service market. The website is professionally designed using WordPress with Elementor and Astra theme, reflecting a modern digital infrastructure with good SEO and mobile optimization. Security posture is solid with HTTPS enabled and cookie consent managed via Usercentrics CMP, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the domain registration data is consistent and transparent, supporting the legitimacy of the business.

D

DPD

dpd.ee

71

DPD Estonia operates as a key parcel delivery service provider within Estonia and across Europe, under the larger Geopost group umbrella. The company offers comprehensive parcel sending, receiving, and tracking services tailored for both business and private customers. Their digital presence is well-established with a modern WordPress-based website featuring multilingual support and customer self-service portals such as myDPD. The website demonstrates good technical maturity with responsive design, modern frameworks, and integration of marketing and analytics tools. Security posture is solid with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly disclosed. The absence of WHOIS data for the main domain suggests privacy protection or proxy usage, which slightly impacts transparency but is common for large enterprises. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

T

Telema AS

telema.com

55

Telema AS is a well-established technology company specializing in Electronic Data Interchange (EDI) and e-invoicing services, primarily serving the Baltic region. With over 25 years of market presence and a strong reputation as a market leader, Telema offers automated business document exchange solutions that enhance operational efficiency for its clients. The company maintains a robust partnership ecosystem with over 40 certified ERP providers and supports global roaming for document exchange. Technically, the website is built on WordPress with modern plugins and libraries, providing a good user experience and mobile optimization. Security-wise, Telema demonstrates a solid posture with ISO 27001 certification and HTTPS enforcement, although some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, the website reflects a credible and professional business with strong trust indicators and a mature digital presence.

Liewenthal Electronics Ltd. is a small Estonian engineering and R&D company specializing in embedded systems, electronics, and software design. With over 15 years of experience, the company serves diverse sectors including telecom, medical, industrial, aerospace, and consumer electronics. Their website reflects a professional B2B service provider with a clear portfolio of key services such as system design, software and electronics design, FPGA/PLD design, testing, and small volume production. The company holds ISO 9001 certification and is recognized as an AMD Adaptive Computing Partner, enhancing its market credibility. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Slider Revolution, and uses Google Analytics and Tag Manager for analytics. The site is mobile optimized and has good SEO practices, though performance is moderate. Cookie consent is implemented via Cookiebot, but a domain authorization error is present, indicating a configuration issue. No WAF or blocking mechanisms were detected, and the site uses HTTPS with good SSL configuration. Security posture is moderate; HTTPS is enforced but lacks explicit security headers and dedicated security or incident response policies. No vulnerability disclosure or security.txt files were found. Privacy compliance is basic with a privacy policy present but no strong GDPR compliance indicators. Contact information is clearly provided, supporting business credibility. Overall, the website is trustworthy and professional but could improve security practices and privacy compliance. Strategic recommendations include fixing Cookiebot errors, adding security headers, publishing security and incident response policies, and implementing vulnerability disclosure mechanisms.

S

Sihtasutus Tartu Ülikooli Kliinikum

kliinikum.ee

53

Tartu Ülikooli Kliinikum is a leading university hospital in Estonia providing comprehensive healthcare services including emergency care, specialist consultations, and patient digital services. The institution is well-positioned in the Estonian healthcare sector with recognized clinical quality, evidenced by awards such as the ESO Angels diamond status. The website targets patients, healthcare partners, and medical professionals, offering extensive information and digital tools for patient engagement. Technically, the site is built on WordPress with modern libraries and frameworks, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement and CAPTCHA integration, though additional security headers and formal security policies could enhance protection. Privacy compliance is evident with clear privacy and cookie policies, though consent mechanisms could be improved. WHOIS data confirms the legitimacy and consistency of the domain registration with the organization's public identity. Overall, the website is professional, trustworthy, and functional, supporting the institution's mission effectively.

T

tõlkebüroo Interlex

interlex.ee

52

Tõlkebüroo Interlex is a well-established Estonian translation bureau founded in 2010, offering a wide range of professional translation and interpreting services including written, oral, AI-assisted, and sworn translations. The company holds internationally recognized certifications ISO 17100 and ISO 18587, underscoring its commitment to quality and industry standards. Their market position is strong within Estonia and internationally, supported by a diverse client base and subsidiary operations such as Dussan OÜ specializing in sworn interpreting. The website reflects a mature digital presence with multilingual support, professional design, and comprehensive service descriptions.

R

Regionální agentura pro rozvoj střední Moravy

rarsm.cz

45

Regionální agentura pro rozvoj střední Moravy (RARSM) is a Czech non-profit association focused on supporting regional development in Central Moravia. Founded in 1996, it provides project preparation, grant application support, and administrative services primarily to municipalities and regional authorities. The agency manages a regional fund and participates in EU co-financed projects aimed at employment and administrative capacity building. The website is built on WordPress with a dated theme but contains relevant and structured content in Czech. Contact information and official documents are clearly presented, supporting business credibility. However, WHOIS data is missing, which impacts domain trustworthiness. Technically, the site uses standard WordPress technologies with jQuery and PDF embedding plugins. It enforces HTTPS but lacks modern security headers and cookie consent mechanisms, which are recommended for GDPR compliance. No analytics or tracking scripts were detected, indicating minimal user tracking. The website's design and mobile optimization are basic but functional, with good navigation clarity. Security posture is generally good due to HTTPS and absence of exposed sensitive data, but improvements are needed in security headers and privacy compliance. The absence of WHOIS data and security policies reduces overall trust. Strategic recommendations include implementing security headers, adding cookie consent, maintaining up-to-date software, and publishing incident response contacts to enhance security and compliance.

E

EDUKAL SYSTEM s.r.o.

edukalsys.cz

52

EDUKAL SYSTEM s.r.o. is a Czech-based small business specializing in marketing, teambuilding, and educational services primarily targeting companies in the Jihomoravský region, including Brno and Tišnov. The company offers comprehensive marketing strategies, team development activities, and tailored training programs to help clients achieve business growth and improved team dynamics. Their market position is regional with a focus on personalized service delivery. The website reflects a professional and consistent brand image with clear service descriptions and contact options. Technically, the website is built on WordPress using Elementor and Elementor Pro, enhanced with SEO tools like Rank Math and GDPR compliance plugins such as Complianz. It employs modern web technologies including Google reCAPTCHA v3 for form security and integrates Google Analytics for user behavior tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms from abuse. However, explicit security headers are not detected, and there is no visible security policy or incident response information. The domain registration data is consistent with the business profile, showing no suspicious patterns and a domain age appropriate for the company's founding date. GDPR compliance is well addressed with clear privacy and cookie policies and user consent mechanisms. Overall, the website presents a trustworthy and professional front for the business with good technical and privacy compliance. Security posture is solid but could be enhanced by adding security headers and formal security policies. The business is well-positioned regionally with clear service offerings and contact channels.

Asociace škol kritické infrastruktury (ASKI) is a Czech non-profit professional association focused on supporting education and activities related to critical infrastructure within the Czech Republic. The organization serves both legal entities and individuals, providing material and financial support, organizing events, and publishing newsletters to its members. ASKI positions itself as a niche entity dedicated to critical infrastructure education and support, leveraging a professional web presence and active social media channels to engage its audience. Technically, the website is built on WordPress using the Elementor page builder, enhanced with SEO tools like Rank Math and privacy compliance plugins such as Complianz GDPR. The site employs modern web technologies including Google reCAPTCHA v3 for form protection and Google Analytics for visitor tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some accessibility improvements could be made. From a security perspective, the site enforces HTTPS with a valid SSL certificate and uses cookie consent management to comply with GDPR. While no explicit security headers were detected, the site follows best practices by protecting forms with reCAPTCHA and avoiding exposure of sensitive data. The absence of WHOIS data limits domain trust assessment, but the professional presentation and transparency of contact information support a positive security posture. Overall, ASKI's website reflects a well-maintained, professional non-profit organization with a clear mission and good digital maturity. Strategic recommendations include enhancing security headers, adding a security.txt file for vulnerability disclosure, and improving accessibility features to further strengthen compliance and trust.

E

experimenta gGmbH

experimenta.science

72

experimenta gGmbH operates Germany's largest science center located in Heilbronn, offering interactive science exhibitions, educational programs, and unique experiences such as the Science Dome and Maker Space. The organization targets a broad audience from children to adults interested in science and technology, positioning itself as a leading educational and experiential institution in the region. The website reflects a professional and modern digital presence built on WordPress with the Divi theme, integrating various JavaScript libraries and a consent management platform to comply with privacy regulations. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers and explicit privacy policies are lacking. The absence of WHOIS data limits domain trust analysis but the overall business credibility is supported by consistent branding and social media presence.

F

Fundación Telefónica Movistar | México

fundaciontelefonica.com.mx

67

Fundación Telefónica Movistar | México is a well-established non-profit organization focused on promoting digital inclusion, education, cultural development, and employability in Mexico. Affiliated with Telefónica, it leverages digital programs and social initiatives to empower communities and individuals through technology. The website reflects a mature digital presence with comprehensive content, including educational resources, publications, podcasts, and volunteer programs. Technically, the site is built on WordPress with modern JavaScript libraries and accessibility tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy policies are comprehensive and GDPR compliant, supporting trust and transparency. Overall, the site demonstrates a high level of professionalism and business credibility, aligned with its mission and audience.

F

Fundación Telefónica Movistar | Colombia

fundaciontelefonica.co

59

Fundación Telefónica Movistar Colombia is a non-profit organization dedicated to promoting digital education, employability, entrepreneurship, social action, volunteering, and digital culture to foster a more inclusive and just society. Affiliated with Telefónica Movistar, it offers a wide range of free and certified courses targeting teachers, students, parents, youth, and professionals. The foundation has a strong market position in Colombia as a leading digital education and social impact entity. The website is built on WordPress CMS with modern technologies such as jQuery, DataTables, and ReadSpeaker for accessibility. It demonstrates good technical maturity with responsive design, SEO optimization, and moderate performance. The site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms, reflecting a commitment to privacy compliance. Security posture is solid with no exposed sensitive data or vulnerabilities detected in the HTML content. However, some security headers could be improved or explicitly implemented. The WHOIS data is privacy protected, which is common for organizations of this type, and does not raise immediate concerns given the strong trust indicators on the site. Overall, the foundation's digital presence is professional, trustworthy, and aligned with its mission. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and continuing to strengthen privacy and security practices.

A

Aliance žen s rakovinou prsu, o.p.s.

bellisky.cz

50

Bellis is a project operated by the Aliance žen s rakovinou prsu, o.p.s., focused on supporting young women undergoing or having undergone breast cancer treatment. The website serves as an informational and community platform offering patient stories, prevention advice, projects, and events. It targets a niche audience within the Czech Republic and operates as a small non-profit entity. Technically, the website is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and Google Tag Manager, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security or incident response policies are published. The absence of WHOIS data reduces domain trust from a registration perspective, but the presence of partner logos and clear contact information supports legitimacy. Overall, the site is professional and trustworthy within its domain, but improvements in transparency and security policies are recommended.

C

Creduo

creduo.cz

43

Creduo is a Czech Republic-based language education studio specializing in group and individual English courses primarily for children from preschool age to teenagers, as well as online Spanish courses for beginners and intermediate learners. The business emphasizes quality teaching, individual approach, and uses accredited methods such as Teddy Eddie. The website reflects a small but professional local education provider with a clear market niche and positive customer testimonials. Technically, the site is built on WordPress with Elementor and Yoast SEO, showing good digital maturity and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security policies or incident response information. Overall, the site is trustworthy and well-maintained, suitable for its target audience.

Š

Škoda Motorsport

skoda-motorsport.com

70

Škoda Motorsport is the official motorsport division of the Czech automotive manufacturer Škoda Auto, with a rich history dating back to 1901. The website serves as a hub for news, customer programs, and information about Škoda's rally and motorsport activities, targeting motorsport enthusiasts and professional racing teams. The company holds a strong market position in the motorsport industry, particularly in rally championships, supported by a professional and content-rich website. Technically, the site is built on WordPress, leveraging modern technologies such as Amazon S3 for asset hosting and Azure CDN for script delivery, with good SEO and mobile optimization. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is partially addressed with a clear privacy policy and GDPR consent on newsletter forms, but lacks a cookie banner. Overall, the website is professional, trustworthy, and well-maintained, though the absence of WHOIS data for the domain is a notable anomaly requiring monitoring.

Š

Škoda Auto

skoda-storyboard.com

70

Škoda Storyboard is a professionally designed and content-rich website serving as a media and storytelling platform for Škoda Auto, a well-established automotive manufacturer. The site targets journalists, influencers, customers, and fans, providing news, press releases, and engaging stories about Škoda vehicles and company initiatives. The technical infrastructure leverages WordPress CMS with modern plugins and CDN delivery, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS enforcement and privacy consent mechanisms, although explicit security policies and incident response contacts are not published. The domain WHOIS data is missing, which raises some concerns about registration transparency but does not detract from the overall professional presentation and trustworthiness of the site content. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and improving direct contact information availability.

Strohmy a.s. is a Czech-based company specializing in electricity trading across European markets. Founded in 2022, it leverages expertise from energy, trading, investment banking, and professional poker to deliver precise decision-making supported by advanced mathematical and data analysis tools. The company emphasizes a respectful and trusting team environment and actively contributes to societal well-being through charitable donations and partnerships. The website reflects a professional and consistent brand image, targeting experienced professionals and partners in the energy sector. Technically, the site is built on WordPress with modern plugins and demonstrates good SEO and mobile optimization, though some security best practices like security headers and explicit privacy policies are missing. Overall, the security posture is adequate with HTTPS enabled and GDPR consent integrated in forms, but could be improved with additional policies and headers. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

Association 42

s19.be

50

Campus 19 is a Belgian coding education platform affiliated with the global 42 network, offering free, peer-to-peer, project-based learning without traditional classes or teachers. It targets adults aged 18 and over, providing an innovative approach to IT education with campuses in Brussels and Antwerp. The platform emphasizes accessibility, inclusivity, and direct career placement, boasting a 100% employment rate after the core curriculum. Technically, the website is built on WordPress, leveraging modern analytics and marketing tools such as Google Tag Manager and Facebook Pixel, and is hosted by OVH. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though explicit privacy and security policies are absent. Overall, the site is professional, trustworthy, and well-positioned in the education sector.

4

42 beirut

42beirut.com

50

42 Beirut is a non-profit educational institution offering a tuition-free, project-based computer science program focused on peer-to-peer learning and practical skills development. Positioned within the global 42 network, it aims to prepare students for careers in software development, AI, blockchain, cybersecurity, and related fields. The website is professionally designed using WordPress and modern web technologies, providing a good user experience and clear navigation. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding DNSSEC and security headers. Overall, the domain registration details align well with the business claims, supporting legitimacy.

F

Fundación Telefónica España

fundaciontelefonica.com

61

Fundación Telefónica España is a well-established non-profit organization focused on digital education, social action, and cultural initiatives primarily in Spain and Latin America. The foundation operates multiple programs aimed at improving digital skills and social inclusion, leveraging technology as a key enabler. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to a broad audience including students, educators, and social organizations. Technically, the site is built on WordPress with modern libraries and includes accessibility and SEO best practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although no explicit security policy or vulnerability disclosure is publicly available. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy indicated by the website's content and social media presence. Strategic recommendations include publishing a security policy, establishing a vulnerability disclosure channel, and enhancing incident response contact visibility to further strengthen trust and compliance.

4

42 Singapore

42singapore.sg

66

42 Singapore operates as a tuition-free ICT education institution leveraging a peer-to-peer, project-based learning model derived from the 42 Paris pedagogy. It targets learners seeking innovative, hands-on coding education without traditional teachers or lectures. The institution is part of the globally recognized 42 Network and offers an EU-recognized diploma equivalent to a Bachelor's degree. Technically, the website is built on WordPress with modern JavaScript libraries and integrates multiple analytics and marketing pixels, indicating a mature digital presence. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks visible security headers and explicit security policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and external references support legitimacy. Overall, the site is professional and user-friendly but would benefit from enhanced transparency in privacy, security policies, and domain registration details.

4

42 Abu Dhabi

42abudhabi.ae

57

42 Abu Dhabi is a tuition-free coding school based in Abu Dhabi, UAE, operating as part of the global 42 Network. The school emphasizes peer-to-peer learning and project-based education, targeting aspiring coders aged 18 and above. The website reflects a professional and consistent brand image, with clear navigation and good content quality. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools. Security posture is solid with HTTPS and anti-clickjacking measures, though lacks some security headers and explicit privacy policies. The domain registration is consistent with the business location and purpose, enhancing trustworthiness. Overall, the website is well-positioned in the education sector with a strong market presence but should improve privacy compliance and security headers to enhance user trust and regulatory adherence.

B

BeCommerce

becomsummit.digital

51

Becom Summit is a professionally managed event platform organized by BeCommerce, the Belgian e-business federation, targeting the Belgian e-commerce sector. The website effectively communicates event details, past editions, and upcoming dates, positioning itself as a leading e-commerce event in Belgium. The technical infrastructure is based on WordPress with modern plugins and multilingual support, indicating a mature digital presence. Security posture is adequate with HTTPS and domain transfer protection, though improvements like DNSSEC and security headers are recommended. Privacy compliance is well addressed with visible policies and consent mechanisms. Overall, the website presents a trustworthy and credible business front with clear contact information and legal disclosures.

B

BeCommerce

becom.digital

59

Becom is a Belgian e-commerce federation established in 2023, dedicated to supporting and certifying online shops in Belgium. The organization offers a range of services including the Becom Trustmark certification, security and cookie scans, educational events such as bootcamps and summits, advocacy and legal support, and a comprehensive knowledge wiki. Their target audience includes B2B, B2C, and D2C e-commerce players in Belgium, positioning themselves as a leading federation in the local e-commerce ecosystem. Technically, the website is built on WordPress with modern plugins and integrations such as Google Tag Manager and reCAPTCHA, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the domain registration data aligns well with the website content, supporting the legitimacy of the business.

S

Stop Parkinson vzw

stopparkinson.be

47

Stop Parkinson vzw is a Belgian non-profit organization dedicated to raising awareness and funds for Parkinson's disease research. The website serves as a platform to inform the public, engage donors, and promote fundraising events such as Peloton Parkinson and Trappenloop. The organization targets individuals, companies, and communities interested in supporting Parkinson's research. Technically, the website is built on WordPress using the Divi theme, integrated with Gravity Forms for data collection, and employs modern analytics and tracking tools including Google Analytics and Facebook Pixel. The site is hosted by Combell nv, a reputable provider, and uses HTTPS to secure communications. Security posture is generally good with no visible vulnerabilities, but lacks explicit security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies, which should be addressed to meet GDPR requirements. Overall, the website is professional and trustworthy, with a solid business model focused on community engagement and fundraising.