High-risk security reports

S

SIA Timber ART

timberart.lv

44

SIA Timber ART is a Latvian small business specializing in the manufacture and sale of wooden barrel-shaped saunas, thermowood sauna houses, frame saunas and houses, micro houses, camping cabins, and wooden hot tubs. The company targets consumers interested in high-quality wooden outdoor living products primarily in Latvia and the Baltic region. Their website is professionally designed using modern technologies such as jQuery, Bootstrap 5, and OpenCart CMS, providing a good user experience with clear navigation and mobile optimization. The site includes social media integration and multiple contact channels, enhancing business credibility. However, WHOIS data could not be retrieved due to query limits, limiting domain trust analysis. The website uses HTTPS but lacks visible security headers and cookie consent mechanisms, indicating room for security and privacy improvements.

K

Kuldīgas novada Bērnu un jauniešu centrs

kuldigasbjc.lv

40

Kuldīgas novada Bērnu un jauniešu centrs is a community-focused educational institution in Latvia dedicated to providing diverse interest-based educational programs, sports, and cultural activities for children and youth. The website reflects a medium-sized organization with a professional and consistent brand presence, targeting local families, educators, and youth. Technically, the site uses common frontend libraries such as Bootstrap and jQuery UI, providing a moderate performance and good mobile responsiveness. However, the absence of privacy and cookie policies, lack of security headers, and unavailable WHOIS data limit the security and compliance posture. The site is accessible without WAF or blocking mechanisms, and content is safe for general audiences.

S

SIA "9 MĒNEŠI"

9menesi.lv

43

9menesi.lv is a Latvian e-commerce business specializing in maternity and wedding apparel, including dresses, rental services, and accessories for pregnant women and families. The company operates a niche online retail platform targeting a specific demographic with a focus on maternity and related products. The website presents a basic but functional design with moderate mobile optimization and clear navigation. Social media presence across multiple platforms supports brand visibility. Technically, the site uses common JavaScript libraries such as jQuery and Google Analytics for tracking, but lacks advanced frameworks or CMS identification. Security posture is moderate with implied HTTPS usage but no visible security headers or explicit privacy and cookie policies, indicating room for improvement in compliance and security best practices. WHOIS data is unavailable due to query limits, limiting domain trust analysis, but the presence of a physical address and VAT number supports legitimacy. Overall, the site is safe for general audiences and operates as a small-scale e-commerce business.

D

Dobeles Valsts ģimnāzija

dvg.lv

41

Dobeles Valsts ģimnāzija is a Latvian secondary educational institution providing comprehensive information about its educational programs, events, and community activities through its website. The site targets students, parents, and educators in the local region. The business model is that of a public educational institution with a medium-sized presence and consistent branding. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, and Macy.js, with Google Analytics integrated under a consent mechanism. The site is mobile optimized and offers a good user experience with clear navigation and relevant content. Security posture is moderate; HTTPS is implied but no explicit security headers or advanced policies are detected. Privacy compliance is good with GDPR-aligned privacy and cookie policies. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site is professional and trustworthy for its educational purpose.

P

Pandataxi.lv

pandataxi.lv

44

Pandataxi.lv is a local taxi service provider operating in Riga, Latvia, offering a range of transportation services including online taxi ordering, corporate contracts, fare calculation, and airport/station transfers. The website targets residents and visitors in Riga seeking convenient and affordable taxi services, supported by a mobile app available on iOS and Android platforms. The business model focuses on digital convenience and corporate client engagement, positioning itself as a reliable local taxi service with a moderate market presence. Technically, the website employs modern tracking technologies such as Google Tag Manager and Google Analytics, and integrates social sharing tools like AddThis. The site is mobile-optimized with good SEO practices and clear navigation, though accessibility features are basic. The absence of a CMS or hosting provider information limits deeper technical profiling. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and formal privacy or cookie policies, which impacts compliance and trust. No vulnerabilities or exposed sensitive data were found in the HTML content. The lack of WHOIS data due to query limits restricts domain legitimacy assessment, though the site content and external partnerships suggest a legitimate business. Overall, the security posture is adequate but could be improved with enhanced policies and headers. The overall risk is moderate with recommendations to implement privacy and cookie policies, add security headers, and publish incident response contacts. Enhancing accessibility and providing WHOIS transparency would further strengthen trust and compliance.

F

FREETAXI

freetaxi.lv

43

FREETAXI is a Latvian-based taxi service provider offering a mobile application for convenient taxi ordering primarily in Riga and its surrounding region. The service emphasizes fixed pricing, driver and vehicle transparency, and multiple ride comfort levels, targeting local taxi users seeking reliable and quick transportation. The website is professionally designed with clear navigation and consistent branding, supporting both iOS and Android platforms. Technical infrastructure includes standard web technologies such as HTML5, CSS, JavaScript, and popular analytics tools like Google Analytics and Yandex Metrika. However, the absence of visible security headers and privacy policies indicates room for improvement in security and compliance. The WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site is functional and trustworthy for its business purpose but would benefit from enhanced security and privacy transparency.

Ogres veterinārā aptieka – klīnika is a veterinary pharmacy and clinic located in Ogre, Latvia, established in 1975. It provides veterinary medical services including treatment, vaccinations, laboratory diagnostics, and sales of veterinary medications and supplements. The clinic operates seven days a week with appointment scheduling and emergency care options. The website is built on WordPress using Elementor and Bootstrap, featuring a professional design with good mobile optimization and clear navigation. Security posture is moderate with HTTPS enabled but lacks security headers and privacy policies. WHOIS data is unavailable due to query limits, limiting full domain trust verification. Contact information is clearly presented, enhancing business credibility.

Aparjods.lv is the official website for Aparjods, a hospitality business operating a hotel and restaurant in Sigulda, Latvia. Established in 1991, the company offers accommodation, dining, seminar rooms, and wellness facilities. The website targets tourists and visitors seeking lodging and event services in the region. The business is positioned as a small but established local hospitality provider with a consistent brand presence and clear contact information. Technically, the website uses a combination of jQuery, Isotope, LightGallery, Google Maps API, and integrates a third-party booking widget from BookVisit. It employs Google Analytics and Google Tag Manager for user tracking and marketing analytics. The site is moderately optimized for performance and mobile devices, with good SEO practices and basic accessibility features. From a security perspective, the site uses HTTPS (implied by external scripts), but no explicit security headers were detected in the provided data. There is no visible security or incident response policy, and WHOIS data could not be retrieved due to query limits, limiting domain registration trust verification. Privacy and cookie policies are present and appear GDPR compliant. No adult or questionable content is present, making the site safe for general audiences. Overall, the website demonstrates a good level of professionalism and business credibility but could improve its security posture by implementing security headers and publishing security policies. The lack of WHOIS data limits full trust analysis but the business information and content quality support legitimacy.

S

Error

sugarbaron.lv

45

The domain sugarbaron.lv currently resolves to a Wix error page indicating that the domain is not connected to any active website. The WHOIS lookup failed due to query limits, preventing extraction of registrar or registration details. The website content is minimal, consisting solely of an error message with instructions to connect the domain to a Wix site. There is no business information, contact details, or privacy/security policies available. Technically, the site uses AngularJS and jQuery libraries hosted by Wix, but no analytics or advertising scripts are present. Security posture cannot be assessed due to lack of HTTPS and security headers information. Overall, the domain appears inactive or improperly configured, resulting in a very low trust and credibility score.

B

Beauty school

beautyschool.lv

43

Beauty school is a Latvian educational institution specializing in professional cosmetology and SPA specialist training. The website targets Russian-speaking students seeking accredited vocational education with state diplomas. The business operates in a niche market with licensed programs and offers a variety of courses including cosmetology, SPA services, cosmetic chemistry, and massage. The site demonstrates consistent branding and basic content quality but lacks comprehensive privacy and terms policies. Technically, the website uses modern JavaScript libraries such as Swiper.js for UI components, Anime.js for animations, Google Maps API for location services, and Stripe.js for payment processing. The site is moderately optimized for performance and mobile use but lacks visible CMS or hosting details. SEO and accessibility features are basic, with room for improvement. From a security perspective, the site uses HTTPS and includes some best practices but lacks visible security headers and explicit security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial, with a cookie consent popup present but no clear privacy policy. WHOIS data is unavailable due to query limits, which slightly reduces trust but is common for small businesses. Overall, the website presents a legitimate educational business with moderate technical maturity and security posture. Strategic improvements in privacy transparency, security headers, and WHOIS data availability would enhance trust and compliance.

G

Gulbenes novada pašvaldība

dzirkstele.lv

41

Dzirkstele.lv is a regional news portal serving the Gulbenes novads area in Latvia, providing local news, events, cultural content, and advertising services. The website operates on WordPress CMS and integrates various third-party advertising and analytics tools, including Google Analytics, Facebook SDK, and Adnami ads. The site offers subscription options for digital and print editions, targeting local residents and visitors interested in community news and events. The content is primarily in Latvian and focuses on regional topics, reflecting a small-sized media entity with a consistent brand presence and moderate trust indicators. Technically, the website uses a modern WordPress platform with standard plugins for event management and advertising. It employs HTTPS for secure communication and includes multiple external scripts for analytics and advertising. The site demonstrates good mobile optimization and SEO practices but lacks explicit security headers and privacy/cookie policies, which are important for GDPR compliance and user trust. No WAF or security challenge mechanisms were detected, and the site content is fully accessible. From a security perspective, the site has a good SSL configuration but could improve by implementing security headers such as Content-Security-Policy and X-Frame-Options. The absence of privacy and cookie policies reduces compliance confidence. WHOIS data could not be retrieved due to query limits, limiting domain trust analysis. However, the website content and structure appear legitimate and consistent with a local government-affiliated media outlet. Overall, Dzirkstele.lv presents a functional and content-rich regional news platform with room for improvement in privacy compliance and security hardening. Strategic recommendations include adding comprehensive privacy and cookie policies, enhancing security headers, and publishing vulnerability disclosure information to strengthen trust and compliance.

B

BRANCHESS

branchess.com

41

BRANCHESS is a Latvian retail fashion brand specializing in clothing and accessories for men and women, with both online and physical store presence in multiple Latvian cities. The website is built on WordPress with WooCommerce, integrating modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar. The site demonstrates good design quality, mobile optimization, and user experience, targeting a general audience interested in fashion retail. However, the absence of publicly available WHOIS registration data raises concerns about domain legitimacy and transparency. Additionally, the lack of visible privacy policy and terms of service pages, as well as missing security headers, indicates areas for compliance and security improvement.

A

AUTOEKSPERTS

ae.lv

46

Autoeksperts.lv is a Latvian automotive service and retail business offering both physical automotive servicing and an online e-commerce platform for automotive accessories and products. The website targets local consumers and businesses in Latvia, providing a range of automotive-related products including roof boxes, batteries, and tools. The company appears to be medium-sized with a focus on retail and transportation sectors. The website is built on WordPress with WooCommerce, leveraging modern web technologies and tracking tools such as Google Analytics and Facebook Pixel. Privacy and cookie policies are implemented with GDPR compliance, and social media presence is active on Facebook and Instagram. However, WHOIS data is unavailable due to query limits, limiting domain registration verification. Security posture is decent with HTTPS enabled but lacks some security headers. Overall, the site is professional, trustworthy, and well-structured for its business purpose.

C

CARMAX Autocentrs

carmax.lv

43

CARMAX Autocentrs is a Latvian automotive service provider specializing in car rental, auto servicing, sales of new and used vehicles, auto evacuation, and spare parts sales. The company targets general consumers in Latvia and the EU, offering competitive rental prices and comprehensive automotive services. The website is professionally designed with clear navigation and multiple contact channels, including phone, email, and contact forms. Technically, the site uses modern web technologies such as jQuery, Google Analytics, Google Tag Manager, Facebook Pixel, and Google reCAPTCHA to enhance user experience and security. Security posture is good with HTTPS and CAPTCHA protections, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable due to query limits, limiting full domain trust assessment. Overall, the website is functional, trustworthy, and business credible with room for improvement in privacy compliance and security transparency.

A

A-ES Logistics

a-es.eu

43

A-ES Logistics is a Latvian-based logistics company specializing in local and international freight transportation with over 20 years of experience. The company offers a comprehensive range of services including land, sea, air, and rail cargo transport, customs brokerage, insurance, and warehousing solutions. Their market position is supported by a strong portfolio of services and positive customer reviews, indicating a trusted presence in the transportation sector. The website is professionally designed with clear navigation and detailed service descriptions targeting both businesses and private individuals. Technically, the site is built on WordPress with modern plugins and tracking tools, optimized for mobile and SEO. Security posture is adequate with HTTPS and secure form handling but lacks advanced security headers and incident response disclosures. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the site presents a credible and professional business with room for improvement in security and compliance documentation.

S

Sūtījums.lv

sutijums.lv

40

Sūtījums.lv is a Latvian parcel shipping and tracking service offering a modern and user-friendly mobile application alongside a website for sending and tracking packages. The business targets general consumers and businesses needing parcel delivery services, emphasizing secure delivery guarantees and convenient payment options. The website is professionally designed with consistent branding and clear navigation, supporting multiple countries for parcel delivery. Technically, the site uses jQuery and Google Tag Manager for analytics and form validation but lacks advanced frameworks or CMS detection. Security posture is moderate with no visible security headers and unknown SSL configuration. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. WHOIS data is unavailable due to query limits, likely indicating privacy protection, which is reasonable for this business type. Overall, the site is functional and trustworthy but would benefit from improved security and privacy practices.

B

BeBe

bebe.lv

46

BeBe.lv is a private preschool and early childhood education provider based in Riga, Latvia, operating since at least 2006. The company offers a range of services including preschool education, talent school activities, baby school, and children's parties. The website reflects a well-established local business with clear contact information, social media presence, and structured data enhancing SEO. Technically, the site is built on WordPress with common plugins and libraries such as Google Analytics, Bootstrap, and Contact Form 7, providing a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and formal security policies. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though WHOIS data is unavailable for full domain legitimacy verification.

R

RīgaTV 24

tv24.lv

45

TV24 is a Latvian live content television channel operated by Kalmars Group, focusing on informative documentary discussion programs featuring Latvian opinion leaders. The channel emphasizes live broadcasting, claiming 90% of its content is live, positioning itself as the fastest growing television channel in Latvia. The website is built on WordPress with modern technologies and includes embedded widgets from partner sites such as la.lv and xtv.lv. Contact information is clearly provided with multiple company domain emails and phone numbers. Cookie consent is implemented via Cookiebot, and analytics are handled by Google Analytics and Gemius Prism. However, explicit privacy and terms of service pages are not found in the provided content. WHOIS data is unavailable due to query limits, limiting domain registration transparency.

Qprakse.lv is a Latvian healthcare website representing Quartus ārstu prakse, a small healthcare provider specializing in gynecology, nutrition, midwifery, ultrasound diagnostics, and oncology/immunology services. The website targets patients seeking personalized and trusted medical care, primarily Latvian-speaking women. The site is built on WordPress using the Mesmerize theme and WPBakery Page Builder, integrating social media and cookie consent mechanisms. While the site demonstrates good content quality, professional design, and clear navigation, it lacks explicit privacy and security policies and does not expose WHOIS data for domain verification. Security posture is moderate with HTTPS usage but missing security headers. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening.

K

Kandavas Draudze

kandavasdraudze.lv

43

Kandavas Draudze is a small non-profit religious organization serving the local community in Kandava, Latvia. The website provides information about church services, community events, and spiritual care, targeting local churchgoers and residents. The site is built on WordPress with a modern theme and plugins, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and formal privacy or cookie policies. The absence of WHOIS data limits domain legitimacy verification, but the website content and structure indicate a legitimate and trustworthy entity.

The website represents the Baltezera Lutheran Church, a non-profit religious organization in Latvia with a rich history spanning approximately 250 years. It serves as a community hub providing information on worship services, events, concerts, and spiritual education. The site targets local community members and visitors interested in Lutheran church activities. Technically, the website uses legacy JavaScript libraries like jQuery and basic CSS styling, with moderate performance and limited mobile optimization. Security posture is modest, lacking HTTPS enforcement and security headers, and no privacy or cookie policies are present, indicating compliance gaps with GDPR. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and content-rich but requires technical and security improvements to enhance trust and compliance.

The website carnikavasbaznica.lv represents the Ādažu Evangelical Lutheran Church community, providing detailed information about church events, prayer activities, community support, and religious education. It serves a local audience in Latvia, focusing on spiritual guidance and community engagement. The site includes donation options and social media integration, reflecting an active and community-oriented organization. Technically, the site uses ER:CMS with common libraries such as jQuery, Bootstrap, and Fancybox, delivering a moderately optimized and mobile-friendly experience. Security posture is basic with HTTPS likely enabled but lacking advanced security headers and privacy policies. No WHOIS data was available due to query limits, but the domain and content appear legitimate and consistent with a small non-profit religious entity. Overall, the website is functional and trustworthy but could improve in privacy compliance and security best practices.

The website represents the Liepājas Lutheran Church, a non-profit religious organization in Latvia. It serves as an information hub for church activities, religious services, community events, and educational programs. The site targets Latvian-speaking members and visitors interested in the Lutheran faith and local church community. The business model is focused on community engagement and fundraising for church restoration projects. The organization maintains a modest online presence with clear contact details and links to its official Facebook page, indicating a stable local market position. Technically, the website uses basic HTML, CSS, and JavaScript with integration of Google Translate for multilingual support. The design is functional but dated, with basic mobile optimization and limited accessibility features. No modern CMS or advanced frameworks are detected. Performance is moderate, and SEO practices are basic. From a security perspective, the site lacks HTTPS enforcement and security headers, which lowers its security posture. No privacy or cookie policies are published, and there is no visible incident response or vulnerability disclosure information. The absence of WHOIS data due to query limits restricts domain registration analysis, but the site content and contact information suggest legitimacy. Overall, the security score is low, and improvements are needed to enhance trust and compliance. The overall risk is moderate given the non-commercial nature and community focus, but the lack of HTTPS and security best practices pose potential risks. Strategic recommendations include implementing HTTPS, adding security headers, publishing privacy and cookie policies, and establishing vulnerability disclosure channels to improve security and compliance.

R

Rīgas baptistu Vīlandes draudze

vilande.lv

45

Rīgas baptistu Vīlandes draudze is a Latvian non-profit religious organization serving the local Christian Baptist community. Their website offers a range of resources including sermon archives, event calendars, and community group information, supporting their mission of spiritual growth and community engagement. The organization relies on donations and active participation from members to sustain its activities. Technically, the website employs a traditional web stack with jQuery, Modernizr, and Fancybox, and integrates Google Analytics with IP anonymization to respect user privacy. The site is mobile optimized and presents a professional, well-structured user experience with clear navigation and consistent branding. Security-wise, while HTTPS is presumably enabled (given Google Analytics usage), no explicit security headers were detected in the provided data, and no direct contact information for security or incident response is published. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism, aligned with GDPR requirements. The absence of WHOIS data limits domain age and registrant verification, but the site content and external links indicate a legitimate and established community presence. Overall, the website is a solid digital platform for a small non-profit religious entity with room for security enhancements and more transparent contact information.

K

Katlakalns

katlakalns.lv

43

Katlakalns.lv is the official website of the Katlakalns Lutheran church community located in Latvia. The site provides information about church services, community events, pastoral contacts, and photo galleries documenting church activities. The website targets local Latvian-speaking church members and visitors interested in Lutheran religious services. The business model is non-profit, focusing on community engagement and religious worship. The site is built on WordPress using the NativeChurch theme and incorporates several plugins for calendar events, accessibility, and SEO optimization. The technical infrastructure is modern and supports mobile responsiveness and accessibility features. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks some security headers and alt text for images. Privacy and cookie policies are missing, which impacts compliance. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and serves its community well, but could improve in privacy compliance and security best practices.

W

WirplastBaltic.eu

wirplastbaltic.eu

45

WirplastBaltic.eu is a Latvian-based manufacturer and distributor specializing in roof ventilation products including ventilation outlets, flat ventilation, solar connections, antenna outlets, and sewer outlets. The website targets construction professionals and distributors in the Baltic region, positioning itself as a regional specialist in manufacturing roof ventilation solutions. The site is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and SEO best practices. Performance is moderate with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and no exposed sensitive data, though security headers are not explicitly present and privacy policies are missing. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and explicit contact information.

J

Jumti & vairāk | ORBERG.lv

orberg.lv

45

ORBERG.lv is a Latvian wholesale distributor specializing in roofing and facade materials, serving construction professionals, architects, and retailers. The company offers a broad range of high-quality roofing products, accessories, ventilation outlets, chimneys, and facade materials, backed by over 15 years of industry experience and partnerships with major European manufacturers. The website is professionally designed using WordPress with WooCommerce and Elementor, providing a good user experience and clear navigation. Contact information and social media presence are prominently displayed, enhancing business credibility. Technically, the site uses modern web technologies and includes tracking via Google Tag Manager and Facebook Pixel. Security posture is good with HTTPS enforced, though some security headers could be improved. Privacy compliance is basic, with a cookie policy and consent mechanism present but no explicit privacy policy page found. Overall, the site is safe, professional, and trustworthy, with no signs of blocking or WAF interference.

SIA Estēts is a Latvian company specializing in supplying high-quality construction and finishing materials from leading manufacturers. The website targets architects, designers, and construction professionals, offering a broad catalog of products including flooring, suspended ceilings, interior design elements, and building components. The company positions itself as a trusted regional supplier with a focus on quality and customer collaboration. Technically, the website is built on WordPress with WooCommerce, leveraging popular libraries such as jQuery and Bootstrap, and integrates SEO and analytics tools like Yoast SEO, Google Analytics, and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks advanced security headers and explicit security policies. No critical vulnerabilities or suspicious content were detected, and the domain registration appears legitimate and consistent with the business profile. Overall, the website demonstrates a solid digital presence with room for improvement in security and compliance documentation.

M

Medību Apģērbi

medibuapgerbi.lv

44

Medibuapgerbi.lv is an e-commerce platform specializing in hunting apparel, footwear, accessories, and optical devices, serving primarily the Latvian market. The website positions itself as the official distributor for several notable hunting brands such as Treksta, Pard, DDoptics, Pinewood, and Alaska 1795, indicating a niche and focused market presence. The business model revolves around online retail with a clear target audience of hunters and outdoor enthusiasts. The site provides essential contact information and a physical address, supporting business credibility. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies including jQuery and Google reCAPTCHA for form security. The site is mobile-optimized and exhibits good design and navigation clarity. However, some technical improvements are recommended, such as implementing security headers and publishing comprehensive privacy and terms of service policies. From a security perspective, the site uses HTTPS and includes a cookie consent mechanism, reflecting basic privacy compliance. No major vulnerabilities or security issues were detected in the content analyzed. The absence of WHOIS data due to query limits restricts full domain legitimacy verification, but the website content and technical indicators suggest a legitimate business. Overall, the site demonstrates a moderate security posture with room for enhancement in privacy and security best practices. Strategically, the business should focus on publishing clear privacy and terms policies, enhancing security headers, and establishing a vulnerability disclosure process to improve trust and compliance. These steps will strengthen the security posture and business credibility, supporting sustainable growth in the competitive hunting retail market.

M

Madonas Alus

madonasalus.com

48

Madonas Alus is a small hospitality and craft beer business based in Latvia, operating from a historic brewing location dating back to 1906. The company offers craft beer production, an onsite restaurant with a Georgian BBQ terrace, camper park facilities, and guided tours with tastings. Their website is built on WordPress with WooCommerce and Elementor, featuring modern plugins for SEO and GDPR compliance. The site is well-structured, mobile-optimized, and integrates a third-party reservation system. Security posture is adequate with HTTPS and domain protections, though some security headers and DNSSEC are missing. Privacy policies are not explicitly published, but cookie consent is implemented. Overall, the business presents a professional and trustworthy online presence suitable for mature audiences interested in craft beer and hospitality services.

F

Fitosauna

fitosauna.com

45

Fitosauna is a Latvian company specializing in handcrafted mini steam saunas designed for home use, offering wellness and spa relaxation benefits. The website presents a professional and well-structured digital presence built on WordPress with Divi and Elementor, integrating modern tracking and analytics tools. The business targets consumers seeking convenient health and relaxation solutions at home, positioning itself as a niche leader in the Latvian market. Security posture is adequate with HTTPS and domain protections, but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is safe, professional, and credible but would benefit from enhanced privacy and security disclosures.

Liepziedi.lv is a Latvian real estate project website focused on selling residential apartments near Mežaparks. The site highlights completed sales, available apartments, and key features such as energy efficiency and local infrastructure. The business appears to be a small real estate developer affiliated with Estera DEVELOPMENT. Technically, the website uses modern front-end libraries including jQuery, Foundation CSS, and tracking tools like Google Analytics and Facebook Pixel. The site is multilingual and mobile-optimized with a good user experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks security headers and visible privacy policies. WHOIS data could not be retrieved due to query limits, limiting domain trust analysis. Overall, the website is professional and trustworthy but could improve privacy transparency and security headers.

H

Henson

kontaktlecas.lv

34

Henson Kontaktlēcu Centrs is a specialized retail and service business based in Riga, Latvia, focusing on contact lenses, eye examinations, and related products. The website provides detailed information about their services, including custom contact lens manufacturing, a wide selection of lenses, and eye care consultations. The business targets consumers in Latvia seeking specialized eye care and contact lens products. Technically, the website uses basic HTML, CSS, and JavaScript with integrations of Google Analytics and Facebook Pixel for user tracking. The site is functional but lacks advanced mobile optimization and accessibility features. Security posture is moderate; HTTPS usage is implied but security headers are missing, and no privacy or cookie policies are present, indicating compliance gaps. Overall, the website appears legitimate and safe, but improvements in privacy compliance and security practices are recommended.

L

Ludzas amatnieku centrs

ludzasamatnieki.lv

38

Ludzas amatnieku centrs is a small local cultural center based in Ludza, Latvia, focusing on traditional crafts, cultural excursions, workshops, and events. The website provides basic information about their services and contact details but lacks advanced digital maturity features such as privacy policies or security disclosures. Technically, the site uses legacy charset encoding and relies on older JavaScript libraries like jQuery and the Skel framework. Google Analytics and Tag Manager are implemented for user tracking, but no cookie consent mechanisms or privacy policies are present, indicating low privacy compliance. Security posture is weak with no visible security headers or HTTPS verification in the provided data. The absence of WHOIS data limits trust in domain legitimacy, although the website content and contact information appear consistent with a legitimate small cultural organization.

H

HAGBERG

hagberg.lv

43

HAGBERG is a Latvian real estate company specializing in sustainable property development, energy-efficient construction, and modern property management services. With over 16 years of experience and a client base exceeding 1000 across Latvia, the company positions itself as a reliable and professional player in the Latvian real estate market. Their website offers multilingual support and detailed service descriptions, reflecting a medium-sized enterprise with a clear focus on quality living spaces. Technically, the website employs modern JavaScript libraries such as jQuery and Google Maps API, ensuring interactive and location-based features. The site is mobile optimized and demonstrates good SEO practices, although some improvements in accessibility and security headers could enhance its technical maturity. The presence of cookie consent mechanisms and privacy policies indicates attention to GDPR compliance. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible advanced security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data due to query limits restricts full domain trust verification, but the professional presentation and consistent branding support legitimacy. Overall, the website is well-structured and trustworthy for its business domain, with recommendations to enhance security headers, publish security policies, and improve accessibility to further strengthen its security posture and compliance.

S

SIA FLEBOMEDIKA

flebomedika.lv

49

SIA FLEBOMEDIKA is a Latvian-based company specializing in supplying professional medical equipment, particularly for laser surgery and various medical specialties such as phlebology, dermatology, urology, and more. The company targets medical professionals and clinics, positioning itself as a provider of world-leading medical devices. The website is built on Drupal 7 CMS and uses common JavaScript libraries to enhance user experience. It features a professional design with clear navigation and basic mobile responsiveness. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms but lacks advanced security headers and explicit security policies. WHOIS data could not be retrieved due to query limits, but the website content and contact information appear consistent and legitimate. Overall, the site demonstrates a moderate level of digital maturity with room for improvements in security and technical modernization.

ZS ”Liepas” is a Latvian nursery specializing in the cultivation and sale of fruit trees, shrubs, and roses, offering a wide variety of seedlings adapted to local climate conditions. The business operates multiple physical locations and participates in exhibitions and fairs, also providing educational tourism. The website is built on WordPress with WooCommerce and Elementor, indicating a modern and flexible digital infrastructure. The site is well-designed, mobile-optimized, and provides clear navigation and contact information. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy/cookie policies. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the website presents a professional and trustworthy front for a small retail nursery business in Latvia.

Z

ZS "Virškalni"

virskalni.lv

36

The website virskalni.lv is currently under construction and displays only a placeholder maintenance page with no substantive business content or contact information. The company name "ZS "Virškalni"" is visible, but no further business description or market positioning details are provided. The site uses WordPress with a coming soon plugin and an outdated jQuery library, indicating a low level of digital maturity. No security headers or HTTPS status could be confirmed, and no privacy or cookie policies are present, which negatively impacts the security posture and privacy compliance. WHOIS data could not be retrieved due to query limits, preventing verification of domain legitimacy and registrant details. Overall, the site presents a low trust profile and minimal business credibility at this time.

P

Puķu lauki SIA

pukulauki.lv

44

Puķu Lauki is a Latvian small business specializing in the retail and e-commerce sale of plants and gardening products, targeting local gardening enthusiasts. The website offers a catalog of perennials, grasses, ferns, bulb flowers, gardening tips, and a flowerbed selection tool. The company recently opened a new store location closer to Riga, indicating growth and local market expansion. Technically, the website uses older JavaScript libraries such as MooTools 1.2.4 and Milkbox for lightbox functionality, with a basic but functional design and navigation structure. However, there is no evidence of modern CMS or advanced technical infrastructure. Security posture is limited due to lack of visible HTTPS enforcement, security headers, and privacy policies, which poses compliance and trust risks. No WHOIS data was retrievable due to query limits, limiting domain legitimacy assessment. Overall, the website is functional but requires improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

L

Linda Bauere

onplate.eu

46

OnPlate is a Latvian nutrition specialist website providing nutritional consultations, health-related events, and nutritional products. The site targets a general audience interested in health and wellness, operating primarily in the Latvian market. The business model combines service offerings with e-commerce capabilities via WooCommerce. Technically, the site is built on WordPress with a modern theme and plugins, including Vue.js and Google APIs, indicating a moderate level of digital maturity. Security measures include HTTPS, Google reCAPTCHA, and a cookie consent mechanism, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

A

AG Capital

agcapital.eu

42

AG Capital is a Latvian-based financial consulting firm specializing in outsourced financial director services and comprehensive financial planning and analysis for medium-sized businesses. Established since at least 2010, the company offers a broad range of services including budgeting, profitability analysis, investment forecasting, cash flow management, competitor analysis, financing acquisition, business plan development, and financial training. Their client base spans 15 countries with over 249 clients, indicating a solid market presence and trust in their expertise. Technically, the website is built on WordPress with a modern tech stack including popular plugins for forms, sliders, multilingual support, and GDPR compliance. The site is well-optimized for SEO and mobile devices, with good performance and accessibility standards. The use of Google Analytics, Google Tag Manager, Facebook Pixel, and MailerLite indicates a mature digital marketing and analytics infrastructure, balanced with user consent mechanisms. From a security perspective, the site employs HTTPS with good SSL configuration and cookie consent management. However, explicit security headers are not clearly detected, and there is no visible security policy or incident response information. No vulnerabilities or exposed sensitive data were found in the content. The domain registration is consistent and trustworthy, registered via GoDaddy without privacy protection, matching the business claims. Overall, AG Capital's website demonstrates a professional, secure, and compliant online presence suitable for its financial consulting business. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure could further enhance trust and security posture.

Baltic Financial Advisors Association (BFAA) is a non-profit organization focused on establishing and maintaining qualification and licensing systems for financial advisors and insurance intermediaries across the Baltic states of Latvia, Lithuania, and Estonia. The association collaborates with major regional banks and offers services including licensing support, continuing professional development, and client support. The website reflects a professional and regionally focused business with clear branding and consistent messaging. Technically, the website is built on WordPress with common plugins such as Yoast SEO and uses modern JavaScript libraries for form validation and UI effects. The site is mobile optimized and demonstrates good SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are missing. No WHOIS data was available due to query limits, limiting domain registration verification. However, the website content and business information appear legitimate and consistent with a regional financial association. No suspicious or malicious content was detected, and privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website presents a trustworthy and professional front for BFAA, with recommendations to enhance security headers, publish security policies, and add vulnerability disclosure information to further strengthen trust and compliance.

MoselWeins.com is an e-commerce website specializing in the sale of wines, likely focusing on products from the Mosel region. The site offers online retail services with product browsing, shopping cart, and checkout functionalities. The business appears to be a small-sized online retailer established around 2012, with a niche market targeting wine consumers and enthusiasts. The website uses the OpenCart CMS platform with the Journal3 theme and incorporates common web technologies such as Bootstrap, Font Awesome, and Swiper.js for UI components. Hosting and domain registration are stable, with Tucows Domains Inc. as the registrar and DNS parking services in use. Security posture is basic, with no advanced security headers or DNSSEC enabled, and no visible incident response or vulnerability disclosure information. Privacy and cookie policies are not found, indicating compliance gaps. Overall, the site is functional but lacks comprehensive privacy, security, and contact transparency.

B

Baleta nodarbības - Par mums

baletanodarbibas.lv

49

The website www.baletanodarbibas.lv represents a small Latvian ballet school offering ballet classes for children and adults. The business focuses on dance education, emphasizing physical development, coordination, and artistic expression. The site showcases experienced instructors and provides detailed descriptions of their backgrounds and offerings. The market position is local with a niche focus on ballet and dance training. Technically, the website uses standard web technologies including jQuery and Fancybox, hosted via Cloudfront CDN, with moderate performance and good mobile optimization. However, there is a lack of advanced security headers and no visible privacy or cookie policies, indicating compliance gaps. No WHOIS data was available due to query limits, but the domain appears legitimate based on content and social media presence. Overall, the site is functional and informative but could improve in security and privacy compliance.

D

DCH studija

dchstudija.lv

37

DCH Studija is a fitness and wellness studio based in Riga, Latvia, offering a variety of group and personal training sessions, including proprietary training concepts such as GRIP, SUPER CORE, and VERVE. The studio also provides online training options via a video library accessible to active members. The business targets fitness enthusiasts, new mothers, and individuals seeking holistic physical and mental wellness. The website is professionally designed with clear navigation and mobile optimization, integrating social media and analytics tools to enhance user engagement and marketing efforts. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks visible advanced security headers. WHOIS data is unavailable due to query limits, but the site presents consistent contact information and privacy policies, indicating legitimacy. Overall, the site is a well-maintained digital presence for a small local fitness business with room for security improvements.

S

SIA ‘’BL Investments’’

ventsys.eu

43

Ventsys is a Latvian small business specializing in the supply and sale of trickle vents for windows, designed to improve indoor air quality by allowing controlled fresh air intake without damaging window frames. The company targets homeowners and building professionals seeking energy-efficient ventilation solutions. The website is built on WordPress with WooCommerce, featuring modern plugins and SEO optimizations, and supports multiple languages for broader reach. Security posture is strong with HTTPS and security headers properly configured, though privacy compliance could be improved by adding cookie consent mechanisms and publishing security policies. Overall, the website presents a professional and trustworthy image with clear contact information and strategic partnerships.

V

VIDRIŽU ATVARI

balticparquet.com

41

VIDRIŽU ATVARI is a Latvian company specializing in the manufacturing and servicing of high-quality oak and ash parquet flooring and floorboards. Established since 1998, the company has a strong market presence in Latvia, offering products such as parquet sorting, floor restoration, installation, and custom orders. The website reflects a professional and consistent brand image with clear contact information and multilingual support. Technically, the site is built on WordPress using popular plugins and frameworks, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and DNSSEC. Privacy compliance is basic with privacy and cookie policies present and a consent mechanism implemented. Overall, the business credibility is high with transparent company information and a well-structured website.