High-risk security reports

E

EASY WINE

easywine.lv

44

Easy Wine is a small hospitality business based in Riga, Latvia, specializing in a wine bar and pizza restaurant experience. The website presents a professional and inviting atmosphere emphasizing quality Italian-style pizzas and a curated wine selection. The business targets local residents and visitors seeking a cozy dining experience with a focus on wine and food pairing. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, and AOS for animations, providing a responsive and user-friendly interface. However, there is a lack of advanced security headers and no visible privacy or cookie policies, which are important for compliance and user trust. The contact information is comprehensive and consistent, including phone, email, physical address, and social media links, supporting business credibility. Overall, the website is functional and professional but could improve its security posture and privacy compliance to enhance trust and regulatory adherence.

M

Modes muzejs Rīgā

fashionmuseumriga.lv

43

The website fashionmuseumriga.lv represents a cultural institution, the Fashion Museum in Riga, Latvia. It offers interactive exhibitions focused on fashion history and collaborates with the Aleksandra Vasiļjeva foundation. The site targets a general audience including families and tourists interested in cultural and historical fashion exhibits. The business model is that of a small museum with additional services such as a museum shop and café. The website is multilingual, supporting Latvian, Russian, English, and several other languages, enhancing accessibility for international visitors. Technically, the website is built on the Bitrix CMS platform, utilizing Bootstrap for responsive design and jQuery for client-side scripting. It integrates Google Analytics and Google Tag Manager for visitor tracking. The site is moderately optimized for performance and mobile devices, with good SEO practices evident in meta tags and structured navigation. However, accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS as indicated by external script sources, but no security headers were detected in the provided data. There is no visible privacy or cookie policy, which is a compliance gap especially under GDPR. No incident response or security contact information is provided. The WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the security posture is moderate but could be enhanced by implementing security headers, privacy policies, and incident response contacts. The overall risk is low given the nature of the business and content, but improvements in privacy compliance and security best practices are recommended to strengthen trust and regulatory adherence.

The website arthub.lv is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The site appears to be hosted on a cPanel infrastructure but lacks any visible metadata, structured data, or business information. Due to the access restriction and lack of WHOIS data (query limit exceeded), it is not possible to verify the domain registration details or the legitimacy of the business behind the domain. No privacy, cookie, or terms of service policies are published, and no contact information beyond a webmaster email is available. The technical infrastructure appears minimal with no detectable CMS, analytics, or advertising technologies. Overall, the site is not operational for public users and provides no business or security assurances.

Latvian Horses - Young Riders School is a specialized equestrian sports education and service provider based in Latvia. The website presents a professional and consistent brand focused on promoting horseback riding through lessons, stables and arena rentals, tours, corporate events, and gift cards. The organization aims to be a leading riding center in the Baltic region, offering training and competitions for all age groups. Technically, the website is built on WordPress with WooCommerce and uses modern plugins such as Slider Revolution and WPBakery Page Builder. It integrates Google Analytics, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes. Security posture is adequate with HTTPS enforced but lacks visible security headers and formal privacy or cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is well-structured, mobile-optimized, and content-rich, suitable for its target audience of equestrian sport enthusiasts and learners.

ExtraPizza is a local pizza restaurant and online food ordering service based in Latvia, offering a variety of pizzas, pizza-rolls, sauces, and drinks. The website serves as an e-commerce platform built on OpenCart, providing customers with product listings, shopping cart functionality, and social media integration. The business targets general consumers seeking convenient pizza delivery or takeaway options. Technically, the site uses common web technologies such as jQuery, Bootstrap, Owl Carousel, and Google Fonts, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal privacy or terms of service documentation. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures.

S

SIA Nurme brewery

nurmebeer.com

48

Nurme is a small, modern craft beer brewery based in Riga, Latvia, established in 2016. The company produces a variety of unique craft beers using high-quality and locally sourced ingredients. Their business model includes direct sales through an online store, a taproom, brewery tours, and hosting craft beer festivals, targeting craft beer enthusiasts primarily in Latvia and the Baltic region. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress with WooCommerce, leveraging modern technologies and CDN services like Cloudflare for DNS. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks security headers and cookie consent mechanisms, which are recommended for compliance and enhanced security. The WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website is functional and trustworthy but could improve privacy compliance and security best practices.

Z

ZeDonats – Gardi virtuļi

zedonats.lv

41

ZeDonats is a small Latvian retail and e-commerce business specializing in the sale of donuts with colorful glaze, offered both as individual treats and gift boxes. The company targets general consumers in Latvia seeking confectionery products and local delivery services. The website is professionally designed using WordPress with WooCommerce and Elementor, providing a modern and user-friendly shopping experience. Technical infrastructure is standard for small e-commerce sites, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. No WHOIS data was available due to query limits, but the website content and contact information suggest a legitimate local business. Overall, the site is safe, trustworthy, and focused on retail food products.

Z

Zobārstniecības klīnika “Elsia”

cerec.lv

31

Zobārstniecības klīnika “Elsia” is a Latvian dental clinic providing a broad range of oral health services delivered by experienced and qualified specialists. The website positions the clinic as a trusted local healthcare provider focused on patient communication and painless treatment solutions. The digital presence is built on WordPress with multilingual support and SEO optimization, indicating a moderate level of digital maturity. However, the absence of explicit privacy and cookie policies, as well as missing contact details in the HTML, suggests room for improvement in transparency and user trust. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices to improve trustworthiness and regulatory adherence.

Hotel Relais le Chevalier is a boutique hotel located in the heart of Riga's Old Town, Latvia. The website presents a well-structured and visually appealing platform showcasing the hotel's unique design, room offerings, and guest experiences. The business targets travelers seeking a boutique hotel experience with personalized service and prime location advantages. The site integrates booking functionalities via a third-party platform and maintains active social media presence to engage customers. Technically, the website uses modern web technologies including Google Fonts, FontAwesome, slick slider, and external booking widgets, providing a responsive and user-friendly experience. Security posture is moderate with HTTPS implied but lacks explicit security headers and policies. Privacy compliance is limited due to absence of a dedicated privacy policy page, though a cookie consent mechanism is implemented. WHOIS data was unavailable due to query limits, limiting domain trust verification. Overall, the website is professional and trustworthy but could improve transparency and security documentation.

S

Stragov Jewelry Workshop

stragov.lv

40

Stragov Jewelry Workshop is a small retail business specializing in luxury and bespoke jewelry products based in Riga, Latvia. The company offers a range of products including wedding rings, women's and men's rings, earrings, bracelets, watches, pendants, and accessories. The website reflects a niche market position focusing on craftsmanship, uniqueness, and personal expression through jewelry. The business has been operating since 2004, indicating a stable presence in the local market. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, and Owl Carousel, providing a responsive and visually appealing user experience. The site is mobile optimized and includes basic SEO and accessibility features. However, no CMS or hosting provider details are evident, and performance is moderate. From a security perspective, the site uses HTTPS but lacks advanced security headers and does not provide a security.txt or incident response information. The contact form includes a simple anti-spam measure but could benefit from enhanced validation and security controls. Privacy compliance is partial, with a cookie consent banner present but no privacy or terms of service pages found. Overall, the website is professional and trustworthy with good business credibility but could improve its security posture and compliance documentation. The absence of WHOIS data limits full domain legitimacy verification but does not raise immediate red flags given the consistent branding and contact information.

Fontaine Delisnack Liepāja is a local restaurant business based in Liepāja, Latvia, offering a variety of dishes and snacks from around the world. The website serves as an informational and promotional platform showcasing their menu, drinks, location, and delivery options. The business targets general consumers seeking quality dining experiences in the hospitality sector. The website is built using modern web technologies such as React and Gatsby, indicating a moderate level of digital maturity and a focus on performance and user experience. However, the site lacks visible privacy, cookie, and terms of service policies, which are important for compliance and user trust. Security posture is basic with no detected security headers or explicit security policies, and no HTTPS or SSL configuration details were available from the provided data. No contact emails or phone numbers were found, limiting direct communication channels. Overall, the website is functional and professional but would benefit from enhanced security and compliance features.

P

Pancars

pancars.eu

47

Pancars is a niche business specializing in team building activities and retro car rental services, primarily targeting corporate clients and groups seeking unique entertainment experiences. Their offering centers around events featuring 60 retro Fiat 126 cars and several retro buses, providing personalized and thematic activities. The website is built on WordPress with WooCommerce integration, leveraging a variety of modern JavaScript libraries and tracking tools such as Google Analytics and Facebook Pixel. The technical infrastructure is moderately optimized for performance and mobile responsiveness, though accessibility features are basic. Security posture is adequate with HTTPS enabled and IP anonymization in analytics; however, the absence of security headers and public security policies indicates room for improvement. Privacy compliance is weak due to missing privacy and cookie policies, and no explicit contact information or incident response channels are publicly available. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and security practices.

Q

Quest.lv

quest.lv

32

Quest.lv is a small regional business specializing in city orientation games, photo quests, and escape room events primarily in Latvia and the Baltic region. The website presents a professional and consistent brand image with a focus on family-friendly entertainment and event services. The technical infrastructure is based on WordPress with the Avada theme and includes SEO optimization via Yoast and analytics through Google Analytics, Yandex Metrika, and Facebook Pixel. Security posture is adequate with HTTPS enabled but lacks comprehensive security headers and visible privacy or cookie policies. No WHOIS data was available due to query limits, but the website content and social media presence support legitimacy. Overall, the site is well-structured and optimized for mobile users, though improvements in privacy compliance and security best practices are recommended.

Flight Consulting Group is a well-established Latvian business aviation holding company founded in 2000, offering a wide range of services including flight planning, ground handling, VIP charter flights, trip support, and aviation infrastructure development. The company operates the FBO RIGA Business Aviation Center, one of the largest and most certified FBOs in Europe and the Baltics. The website demonstrates a professional digital presence with comprehensive content about the company’s history, services, and subsidiaries. Technically, the site uses modern analytics and tracking technologies but lacks some security headers and explicit privacy disclosures. The security posture is generally good with HTTPS enabled and CSRF tokens present, but improvements are recommended in privacy compliance and security hardening. Overall, the website is trustworthy and reflects a credible business with strong industry certifications and awards.

Financial Intelligence is a small Latvian-based accounting and business support service provider specializing in outsourced accounting, tax consultations, HR services, and company establishment in Riga and Latvia. The company targets local and foreign businesses seeking professional financial and administrative support. The website is built on TYPO3 CMS and uses legacy JavaScript libraries, with moderate performance and basic mobile optimization. Security posture is average, with HTTPS enabled but lacking modern security headers and using outdated libraries. Privacy and cookie policies are absent, indicating compliance gaps. Contact information is clearly presented, enhancing business credibility. Overall, the website is professional and business-focused but requires technical and compliance improvements to enhance security and trust.

H

Hercogi

hercogi.lv

42

Hercogi is a family-oriented restaurant located in Mārupē, Latvia, offering a variety of dining experiences including business lunches, brunches, pancake mornings, and live music events. The website positions the business as a local hospitality venue catering to families and event hosting, with a focus on quality food and special occasions. The digital presence is built on WordPress with WooCommerce integration, indicating a moderate level of digital maturity and e-commerce capability. The site uses modern SEO and marketing tools such as Yoast SEO, Google Analytics, Facebook Pixel, and Google Tag Manager, supporting effective online marketing and customer engagement. Security posture is solid with HTTPS, security headers, and reCAPTCHA, though explicit privacy and security policies are missing, which could be improved for compliance and trust. Overall, the website is professional, well-branded, and trustworthy, serving a local hospitality market with a clear business model and active social media engagement.

Z

Zoltners

zoltners.lv

45

Zoltners is a hospitality business based in Latvia offering restaurant services, hotel accommodation, and a craft brewery experience in the Zemgale region. The website presents a professional and well-structured digital presence built on WordPress with the Avada theme, integrating modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Mailchimp. The site is mobile-optimized and SEO-friendly, providing a good user experience with relevant content focused on its hospitality offerings. Security posture is adequate with HTTPS enabled and asynchronous loading of third-party scripts, but lacks some advanced security headers and explicit privacy and terms of service documentation. WHOIS data could not be retrieved due to query limits, limiting full domain legitimacy verification. Overall, the site is trustworthy and suitable for general audiences with no adult or explicit content detected.

J

Jelgavas Spīdolas Valsts ģimnāzija

jsvg.lv

43

Jelgavas Spīdolas Valsts ģimnāzija is a Latvian secondary educational institution serving students and the local community in Jelgava. The website provides information about school news, admissions, projects, and educational resources. It uses WordPress as its CMS platform and integrates social media content via Facebook embeds. The site demonstrates compliance with GDPR through clear privacy and cookie policies and an active cookie consent mechanism. Contact information is clearly presented, enhancing business credibility. Technically, the site is functional but shows room for improvement in mobile optimization, accessibility, and security headers implementation. The absence of WHOIS data due to query limits restricts full domain trust verification, but the website content aligns with a legitimate educational entity.

Rīgas Āgenskalna Valsts ģimnāzija is a Latvian public secondary educational institution providing comprehensive educational programs, extracurricular activities, and student support services. The website serves as an information hub for students, parents, and staff, offering news updates, schedules, and contact information. The site is built on WordPress with a modern block editor, ensuring good content management and user experience. Technically, the site is well-structured, mobile-optimized, and uses HTTPS, but lacks some security headers and privacy compliance documentation. Security posture is moderate with no visible vulnerabilities but could be improved by adding security headers and formal privacy/cookie policies. Overall, the website is trustworthy and professional, serving its educational mission effectively.

Baltic Events is a small media and event management company operating primarily in the Baltic region since 2014. The company offers a broad range of services including public relations, marketing, influencer engagement, event logistics, and technical support. Their website is built on WordPress with SEO optimization via Yoast and integrates social media through Facebook. The technical infrastructure is moderate with standard technologies such as jQuery and Google Analytics. Security posture is basic with HTTPS enabled but lacking advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is not explicitly provided on the homepage, which may affect user trust. Overall, the website serves as a functional business portal but requires improvements in security and compliance to enhance trust and professionalism.

E

Ezītis miglā

ezitis.lv

43

Ezītis miglā is a hospitality business operating multiple restaurant and bar locations primarily in Latvia. The website showcases their venues, special offers, franchise opportunities, and event hosting services. The company maintains an active social media presence and uses modern web technologies including WordPress and Elementor. The technical infrastructure includes standard marketing and analytics tools such as Google Analytics and Facebook Pixel, with GDPR-compliant cookie consent mechanisms implemented. Security posture is generally good with HTTPS enforced and anonymized analytics, though some security headers and explicit privacy policies are missing. The domain WHOIS data could not be retrieved due to query limits, but no suspicious indicators were found in the website content. Overall, the site is professional and trustworthy for its hospitality audience.

A

Ambika Yoga

ambika-yoga.com

45

Ambika Yoga is a well-established yoga and meditation studio based in Riga, Latvia, founded in 2010. The studio offers a variety of yoga styles, meditation sessions, retreats, and online classes, targeting wellness seekers locally and internationally. The website reflects a professional and consistent brand with clear service offerings and a strong local presence. Technically, the site is built on WordPress using Kubio blocks and jQuery, hosted likely via GoDaddy, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled but lacks important security headers, representing an area for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and safe for general audiences but would benefit from enhanced security and privacy measures.

I

Institut-Francais.lv

institut-francais.lv

43

Francijas institūts Latvijā is a French government-affiliated cultural and educational institution promoting French language and culture in Latvia. The website offers comprehensive information about French language courses, certifications, cultural events, and study opportunities in France. It targets a broad audience including adults, children, students, and professionals interested in French culture. The site is well-structured, multilingual, and professionally designed, reflecting a mature digital presence. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates various third-party services such as Google Analytics, Microsoft Clarity, and Mailchimp for marketing and analytics. It employs security measures including HTTPS and Google reCAPTCHA, and has a robust cookie consent mechanism compliant with GDPR. Security posture is good with no evident vulnerabilities in the provided content, though explicit security headers are not confirmed. The lack of WHOIS data limits domain trust analysis, but the official nature and content quality suggest legitimacy. Overall, the site demonstrates a strong balance of usability, compliance, and security suitable for its educational and cultural mission.

F

FULLHOUSE

fullhouse.lv

42

FULLHOUSE is a boutique interior design firm based in Riga, Latvia, offering comprehensive interior design services from concept development to project management and furnishing. Their website showcases a portfolio of unique, client-tailored projects emphasizing quality and attention to detail. The company targets individuals and families seeking personalized interior design solutions. Technically, the website is built on WordPress with common libraries such as jQuery and Font Awesome, providing a moderate performance and good mobile optimization. However, the site lacks explicit privacy and cookie policies, security headers, and vulnerability disclosure information, which are important for compliance and security posture. The WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is professional and safe but would benefit from enhanced security and privacy compliance measures.

B

Bumblebee Pro

bumblebeepro.com

44

Bumblebee Pro is a specialized boutique company focused on the design and manufacture of DIY professional audio equipment, particularly ribbon microphones. Founded and led by Artur Fisher, the company offers original, handcrafted ribbon microphone kits and parts, targeting the DIY pro audio community. The website serves as an e-commerce platform showcasing their products, manuals, and educational content. Technically, the site is built on a modern WordPress stack with WooCommerce and Elementor, integrating analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is generally good with HTTPS enabled, but lacks some security headers and formal privacy or cookie policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness. No critical security vulnerabilities or adult content were detected, and the site is fully accessible without WAF or blocking mechanisms.

B

BUDOLAND

budoland.lv

43

BUDOLAND is a Latvian-based e-commerce retailer specializing in combat sports equipment such as boxing gloves, kimonos, MMA gear, and related accessories. The website targets Latvian consumers interested in martial arts and combat sports, offering a broad product range with fast delivery within Latvia. The business operates primarily online with a small to medium market presence, focusing on niche sports retail. Technically, the website is built on WordPress with WooCommerce, enhanced by the Breakdance theme builder and uses jQuery and Facebook Pixel for marketing and analytics. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is good with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies. No WHOIS data was available due to query limits, but the website's professional presentation and consistent branding support its legitimacy. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security best practices.

O

Osiris Restaurant

cafeosiris.lv

43

Cafe Osiris is a well-established restaurant and cafe based in Riga, Latvia, with a history spanning over 25 years. The business offers a range of hospitality services including dine-in, food delivery, confectionery, and private event hosting. The website reflects a culturally rich and locally respected brand with a consistent and professional online presence. The target audience includes local residents and tourists seeking quality dining experiences. Technically, the website is built on WordPress with common plugins and integrates Google Analytics and Tag Manager for marketing insights. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. WHOIS data could not be retrieved, limiting domain registration verification. Overall, the site is safe, professional, and trustworthy with moderate risk due to missing compliance documentation.

M

Miró Restorāns

mirorestorans.lv

45

Miró Restorāns is a Latvian hospitality business specializing in restaurant dining, catering, and banquet services. The website presents a professional and well-structured digital presence emphasizing quality food sourced from local suppliers and event hosting capabilities. The business targets general consumers, families, and corporate clients seeking quality dining and event experiences. Technically, the site is built on WordPress with Elementor and uses modern web technologies and Google services for analytics and marketing. Security posture is good with HTTPS and security headers, though formal security policies and incident response contacts are absent. Privacy compliance is well addressed with GDPR-aligned cookie and privacy policies. Overall, the site is trustworthy and professionally maintained, but WHOIS data is unavailable due to query limits, limiting full legitimacy verification.

M

Medusveikals.lv

medusveikals.lv

44

Medusveikals.lv is a specialized e-commerce retailer focused on honey and bee-related products, serving customers primarily in Latvia with both online and physical store presence in Riga. The website offers a broad assortment of products including honey, bee pollen, propolis, cosmetics, candles, and related accessories. The business targets consumers interested in natural bee products and health supplements. Technically, the site is built on the PrestaShop CMS platform with Elementor for design, integrating modern web technologies such as Google reCAPTCHA for bot protection and Facebook Pixel for marketing analytics. The site is multi-lingual, supporting Latvian, English, and Russian, enhancing accessibility for a wider audience. Security posture is solid with HTTPS enforced and anti-bot measures, though some security headers are missing and privacy compliance could be improved by publishing a privacy policy and terms of service. Overall, the website presents a professional and trustworthy e-commerce platform with moderate technical maturity and good business credibility.

S

SIA ASART

restoranarmenia.lv

48

The website www.restoranarmenia.lv represents a small hospitality business operating a restaurant named "Armenia" located in Riga, Latvia. The restaurant specializes in Armenian and Georgian cuisine, offering dine-in services, banquets, and table reservations. The site is multilingual, supporting English, Russian, and Latvian languages, and provides clear contact information and a reservation form for customer convenience. The business appears locally focused with a consistent brand presence and a professional online presentation. Technically, the website is built on WordPress with WooCommerce and uses popular plugins such as Revolution Slider and WPML for multilingual support. It employs CookieYes for cookie consent management, ensuring GDPR compliance. The site uses HTTPS with good SSL configuration but lacks some security headers that could enhance protection. Performance and mobile optimization are adequate, with a moderate loading speed and good responsive design. From a security perspective, the site demonstrates good practices like HTTPS enforcement and cookie consent but lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Analytics and advertising tools from Google and Yandex are used, with moderate user tracking and transparent cookie categorization. Overall, the website is a well-maintained, legitimate online presence for a local restaurant with good privacy compliance and user experience. The main risk areas include the absence of security headers and lack of publicly available WHOIS data, which limits domain trust verification. Strategic improvements in security policies and headers would enhance the site's security posture.

AS "Olaines kīmiskā rūpnīca BIOLARS" is a specialized chemical manufacturing company based in Latvia, recognized as the sole specialized chemical enterprise in the Baltic states and a leading producer of Azo initiators in Europe. The company focuses on producing technologically complex chemical products, intermediates for paint and varnish industries, and finished coatings for both household and professional use. Their market position is strong within the regional chemical manufacturing sector, supported by ISO certifications (ISO 50001, ISO 14001, ISO 9001) and a broad product portfolio. The website content is professionally presented in Latvian, targeting B2B industrial clients and professional users.

The website at veloshops.lv is currently inaccessible or blocked, as evidenced by the completely empty HTML content and the WHOIS query limit error preventing domain registration data retrieval. No metadata, business information, or contact details are available, making it impossible to assess the company's market position, services, or audience. The lack of content and technical data indicates the site may be inactive or protected by rate limiting or a web application firewall. The technical infrastructure cannot be evaluated due to missing data, and no security headers or SSL information are present. Overall, the security posture is minimal with significant gaps in privacy compliance and business credibility. The risk assessment is high due to the lack of transparency and accessibility, and strategic recommendations focus on restoring website availability, implementing HTTPS, and publishing essential legal and contact information.

S

SIA addPack Transport

addpack.lv

42

SIA addPack Transport is a small Latvian company specializing in courier and passenger transfer services primarily within Riga, Latvia, and the Baltic region. Their website clearly communicates their business offerings, emphasizing fast delivery and professional service. The company provides direct contact information including phone, email, and a contact form, supporting customer engagement. The website's market position appears local and service-focused, targeting individuals and businesses requiring transport and courier solutions. Technically, the website employs a basic but functional technology stack including jQuery and a slider plugin, with Google Fonts for typography. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, the technical implementation lacks modern security headers and advanced performance optimizations. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. From a security perspective, the site uses HTTPS (assumed but not explicitly confirmed), but lacks important security headers such as Content-Security-Policy and HSTS. The contact form uses AJAX for submission but does not implement visible anti-spam or CAPTCHA protections. The use of an outdated jQuery version may expose the site to known vulnerabilities. No WHOIS data was available due to query limits, limiting the ability to fully verify domain legitimacy and registrant details. Overall, the website is functional and professional for a small local transport business but requires improvements in security posture and privacy compliance to enhance trustworthiness and regulatory adherence. Strategic recommendations include implementing security headers, updating JavaScript libraries, adding privacy and cookie policies, and enhancing form security.

O

O´Learys

lv.olearys.club

46

O´Learys operates as a hospitality business specializing in sports bar and restaurant services styled after a Bostonian neighborhood bar. The brand targets a general audience seeking a combination of sports viewing, American cuisine, and entertainment in a friendly atmosphere. The website supports multiple languages and country-specific subdomains, indicating a regional presence primarily in the Baltic states. The business model focuses on providing a comprehensive hospitality experience with event hosting and entertainment as key services. Technically, the website is built on WordPress with a modern front-end stack including Foundation CSS and various JavaScript libraries for UI and interactivity. The site is mobile optimized and includes SEO best practices, but accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks security headers and explicit security policies. Privacy compliance is basic with a cookie consent mechanism and a privacy policy hosted on a related domain. No direct contact information or incident response details are provided, which limits transparency. Overall, the site is professional and functional but could improve in security and compliance transparency.

P

Picas piegāde - Picu piegāde Rīgā - PizzaTime.Lv

pizza-time.lv

46

Pizza-Time.lv is a local food delivery service specializing in pizza and sushi delivery in Riga, Latvia. The website targets consumers seeking convenient online ordering of these food items. The business operates on a small scale with a clear focus on the local market. The website is built on WordPress with WooCommerce, leveraging popular plugins for SEO and marketing. The technical infrastructure is modern but basic, with standard e-commerce capabilities and common analytics integrations. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is minimal with a cookie consent mechanism but no visible privacy or terms of service pages. Overall, the website presents a professional and functional online presence for a local food delivery business.

N

Nacionālais psihiskās veselības centrs, Valsts SIA

npvc.lv

48

Nacionālais psihiskās veselības centrs, Valsts SIA, is the largest psychiatric and narcological treatment institution in Latvia and the oldest in the Baltic region, founded in 1824. The organization provides a wide range of healthcare services including inpatient and outpatient psychiatric care, social rehabilitation, and specialist consultations. The website serves as an information portal for patients and clients, offering contact details, service descriptions, and access to various healthcare programs. The business operates as a state-owned entity, targeting Latvian residents in need of mental health services. Technically, the website is built on WordPress 6.8.2, utilizing modern frameworks such as Bootstrap 4.6.2 and jQuery 3.7.1. It incorporates accessibility features and GDPR-compliant cookie consent mechanisms, reflecting a mature digital infrastructure. The site loads with moderate performance and is optimized for mobile devices, ensuring a good user experience. From a security perspective, the site enforces HTTPS and includes privacy and cookie policies, but lacks explicit security headers and incident response contact information. No vulnerabilities or suspicious elements were detected in the visible content. The absence of WHOIS data limits domain trust verification, but the website content and business information strongly indicate a legitimate and professionally managed healthcare institution. Overall, the website demonstrates good content quality, technical implementation, privacy compliance, and business credibility. Strategic recommendations include enhancing security headers, publishing a security policy or incident response contacts, and maintaining regular plugin audits to further strengthen security posture.

T

TATTOO.LV

tattoo.lv

44

TATTOO.LV is a Latvian tattoo and piercing studio established in 1997, positioning itself as the first such studio in Latvia with over 20 years of professional experience. The website presents a professional image with clear service offerings including tattooing, piercing, and tattoo removal. The technical infrastructure is based on WordPress with the Divi theme, incorporating modern web technologies and Google Analytics for visitor tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and trust. WHOIS data could not be retrieved, limiting domain trust verification. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security best practices.

R

Rīgas Tinte

rigastinte.lv

49

Rīgas Tinte is a professional tattoo studio located in Riga, Latvia, established in 2010. The company specializes in various tattoo styles, emphasizing high-quality tattooing, hygiene, and customer service. The website reflects a local business with a clear focus on providing tattoo services and related products such as gift cards. The site is bilingual, supporting Latvian and English, targeting a general audience interested in tattoo art. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities, using modern frameworks like UKit and lazy loading for images, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and formal security policies on the site. Privacy compliance is partial, with a cookie consent mechanism but no clear privacy policy or terms of service pages. Overall, the business appears credible and professional, though WHOIS data is unavailable for full legitimacy verification due to query limits.

T

TattooFrequency- tetovēšanas pakalpojumi

tattoofrequency.lv

45

TattooFrequency is a small, established tattoo studio located in Riga, Latvia, operating since 2013. The business offers professional tattooing services by a team of experienced artists, focusing on quality, hygiene, and personalized tattoo designs. The website is multilingual, targeting Latvian, English, and Russian speakers, and includes rich content such as galleries, testimonials, and blog posts to engage its audience. Social media integration is strong, with active links to Facebook, Instagram, YouTube, Pinterest, and Threads, supporting community engagement and marketing efforts. Technically, the website is built on WordPress with common plugins for content management, testimonials, and multilingual support. It uses Google reCAPTCHA for form security and HTTPS for secure connections. However, the site uses an outdated jQuery version, which poses potential security risks. Privacy compliance is basic, with a privacy and terms page present but lacking explicit GDPR consent mechanisms or cookie banners. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is professional and trustworthy for its business scope but could improve security and privacy compliance.

Baltic Tour is a specialized tour operator offering escorted and private tours primarily in the Baltic countries and surrounding regions. Established in 2004, the company provides a variety of themed tours including classical, biking, lifestyle, and educational tours targeting tourists interested in cultural and historical experiences. The website presents a professional and consistent brand image with clear navigation and relevant content focused on their niche market. Technically, the site uses standard web technologies such as HTML5, CSS3, and SVG graphics, hosted on Rackspeed Cloud infrastructure. Mobile optimization and user experience are good, though accessibility and SEO are basic. Security posture is moderate with no advanced security headers or DNSSEC enabled, and no visible HTTPS data was provided. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR compliance indicators. Contact information is not explicitly provided in the HTML content analyzed. Overall, the website is trustworthy and professional but could improve in security and privacy compliance to enhance user trust and regulatory adherence.

Riga Pub Crawl is a small hospitality business specializing in nightlife tours and entertainment activities in Riga, Latvia. The company offers guided pub crawls and a wide range of additional activities such as bobsleigh, go-karts, curling, shooting ranges, and adult-themed events like strip dinners and party buses with strippers. Their target audience primarily consists of tourists and visitors seeking to explore Riga's nightlife and group entertainment options. The website is designed to facilitate bookings and provide detailed information about their services. Technically, the website uses a traditional HTML/CSS/JavaScript stack with jQuery and SweetAlert2 libraries. It is mobile-optimized and includes interactive elements like image slideshows and accordions. However, SEO is weak due to missing meta descriptions and a robots meta tag that prevents indexing. No CMS or advanced frameworks are detected, and no analytics or tracking scripts are present, indicating a basic digital maturity level. From a security perspective, the site uses HTTPS but lacks important security headers such as Content-Security-Policy and HSTS. The contact form includes consent checkboxes but does not show anti-CSRF tokens or other advanced protections. No privacy or cookie policies are present, which is a compliance risk. WHOIS data for the subdomain is unavailable, which is typical, but no registrant information is provided to verify domain legitimacy fully. Overall, the website is functional and provides good user experience for its niche but requires improvements in security, privacy compliance, and SEO to enhance trust and visibility. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, improving SEO metadata, and adding analytics for business insights.

D

Discover Latvia Tours

discover-latvia.lv

47

Discover Latvia Tours is a small hospitality and tourism business specializing in guided day trips and activities in Latvia and the Baltic states. The website presents a professional and content-rich platform targeting tourists interested in exploring Latvia's nature, culture, and cities. The company leverages local guides and offers a variety of tours including nature, winter, and tailor-made experiences. Technically, the website uses modern web technologies such as Google Tag Manager, Google Analytics, jQuery, and Vimeo for video content, and implements a GDPR-compliant cookie consent mechanism. However, the absence of a privacy policy and terms of service pages, as well as missing security headers, indicate areas for improvement in compliance and security posture. The website is accessible without WAF or blocking mechanisms, and customer trust is supported by numerous positive TripAdvisor reviews. WHOIS data could not be retrieved due to query limits, limiting domain registration verification.

R

Rīga ZOO

rigazoo.lv

42

Rīga ZOO is a public zoological garden located in Riga, Latvia, focusing on animal conservation, education, and public engagement. The website provides comprehensive information about ticketing, educational programs, animal exhibits, and support opportunities such as donations and sponsorships. It serves a broad audience including families, students, tourists, and conservation supporters. The site is well-branded and consistent with its mission as a government-affiliated institution. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses popular plugins such as Yoast SEO and PixelYourSite for SEO and marketing. The site is mobile-optimized and accessible, with good performance and SEO practices. Analytics and tracking are implemented via Google Analytics, Facebook Pixel, and Jetpack Stats, with GDPR compliance mechanisms in place. From a security perspective, the site uses HTTPS and employs some privacy and tracking controls, but lacks explicit security headers and dedicated security or incident response pages. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data could not be retrieved due to query limits, limiting domain registration trust verification. Overall, the website presents a professional, trustworthy, and user-friendly digital presence for Rīga ZOO, with room for improvement in security headers and transparency around security policies. The risk level is low, and the site aligns well with its public and educational mission.

Richard Watersports Centre operates a specialized water sports rental and instruction service based in Riga, Latvia, focusing on activities such as windsurfing, SUP, kayaking, and water motorcycle rentals. The business targets local enthusiasts and tourists seeking water-based recreational activities, offering both equipment rental and professional lessons. The website supports multiple languages and provides online gift card purchases, indicating a modern approach to customer engagement and sales. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search optimization. It integrates Stripe for payment processing and uses Google Analytics for visitor tracking. The site is hosted by HOSTINGER operations, UAB, a reputable hosting provider. Performance and mobile optimization are adequate, though accessibility features are basic. From a security perspective, the site enforces HTTPS and includes several security headers, though DNSSEC is not enabled and the Content-Security-Policy is overly restrictive, potentially impacting functionality. No explicit security or incident response policies are published, and privacy and cookie policies are absent, representing compliance gaps. The domain registration is stable and consistent with the business's age and profile. Overall, the website presents a trustworthy and professional front for a small local business but should improve privacy compliance and security transparency to enhance trust and regulatory adherence.

Ruukki Pludmales centrs is a Latvian-based sports and event center specializing in beach volleyball, beach tennis, and related sports activities. The business offers a variety of services including sports academies, tournaments, camps for children, physiotherapy, and event hosting. The website targets sports enthusiasts, families, children, and corporate clients, positioning itself as a local hub for beach sports and recreational activities. The business model revolves around providing sports facilities, training, and event spaces with a focus on community engagement and youth development. Technically, the website employs modern web technologies including Google Maps API for location services, Facebook Pixel and Google Analytics for tracking, and a third-party chat widget for customer interaction. The site is mobile-optimized and uses popular web fonts for a consistent user experience. However, some technical improvements are recommended such as implementing security headers and enhancing privacy compliance mechanisms. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, it lacks several important security headers and has an exposed Google Maps API key, which could be restricted further. There is no visible incident response or vulnerability disclosure information, and no explicit cookie consent mechanism is present, which may impact GDPR compliance. Overall, the website is professional and functional with moderate security posture and privacy compliance. The lack of WHOIS data limits full trust analysis, but the site appears legitimate with clear contact information and consistent branding. Strategic recommendations include enhancing security headers, implementing cookie consent, and improving transparency around data protection and incident response.

C

Coo Culte

cooculte.com

38

Coo Culte is an e-commerce website established in 2013, operating on the OpenCart platform with the Journal3 theme. The site appears to focus on retail sales, though specific product or service descriptions are minimal in the provided content. The technical infrastructure includes standard web technologies such as JavaScript, CSS, and HTML5, with integration of Google Fonts and a third-party chat widget (JivoSite) for customer support. Hosting is provided by GoDaddy.com, LLC, and the domain is well-established with over 10 years of registration history. From a security perspective, the website uses HTTPS but lacks advanced security headers and DNSSEC is not enabled, which are areas for improvement. No privacy, cookie, or terms of service policies were detected, indicating potential compliance gaps with GDPR and other privacy regulations. Contact information such as emails, phone numbers, or physical addresses are not present in the analyzed content, which may affect user trust and business credibility. Overall, the website demonstrates a basic level of technical implementation and business maturity but lacks comprehensive privacy and security practices. The absence of critical compliance documents and contact details suggests the need for enhancements to improve trustworthiness and regulatory adherence.

B

Baltic Medical Group

baltic-dental.com

37

Baltic Dental Services is a small healthcare business specializing in affordable dental treatments located in Riga, Latvia. The company targets cost-conscious patients, particularly dental tourists from Europe, offering a range of cosmetic and general dental services. The website presents a professional image with clear service descriptions, testimonials, and contact information, positioning itself as a quality yet affordable alternative to Western European dental clinics. The business is part of Baltic Medical Group and has been operating since 2006, supported by consistent domain registration data. Technically, the website uses legacy technologies such as jQuery 1.7.2 and integrates common marketing and analytics tools like Google Analytics and ShareThis. However, the site lacks modern security practices, notably missing HTTPS and loading some external resources over unsecured HTTP. Mobile optimization and accessibility are basic but functional. SEO and metadata are present but could be improved for better digital maturity. From a security perspective, the absence of HTTPS and security headers, combined with the use of outdated libraries and unsecured external scripts, lowers the security posture. Privacy compliance is minimal, with a basic privacy policy but no cookie consent or GDPR indicators. No incident response or security policies are published, which could be a concern for data protection and regulatory compliance. Overall, the website is functional and credible for its business purpose but requires significant improvements in security and privacy compliance to reduce risk and enhance trust. Strategic recommendations include implementing HTTPS, updating security headers, modernizing the tech stack, and introducing comprehensive privacy and cookie policies.

P

PIPPA WAFFLES

pippawaffles.lv

47

PIPPA WAFFLES is a small hospitality business based in Riga, Latvia, specializing in authentic Belgian waffles and specialty coffee. The website presents a clear business focus on freshly made waffles and takeaway coffee, targeting local customers and visitors. The business operates a retail food and beverage model with a physical location at Krišjāņa Valdemāra iela 17a. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies, including JavaScript and Facebook Pixel for marketing analytics. The technical infrastructure is typical for small businesses using website builders, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and some JavaScript hardening, but lacks advanced security headers and explicit privacy or cookie policies. WHOIS data could not be retrieved due to query limits, limiting domain registration trust verification. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and security best practices.

P

Porto Fino

porto-fino.lv

43

Porto Fino is a Latvian-based restaurant specializing in Italian and seafood cuisine, offering a diverse menu including oysters, salads, pizzas, soups, risotto, pasta, meat and fish dishes, vegan and gluten-free options, and desserts. The business operates both a physical restaurant and an e-Restaurant platform for online ordering and delivery, targeting local customers and food enthusiasts. The website is professionally designed using OpenCart CMS with modern front-end technologies such as Bootstrap and jQuery, and integrates social media content via Instagram feeds to engage customers. Technically, the website employs a responsive design with good mobile optimization and uses several JavaScript libraries and CSS frameworks to enhance user experience. However, the site lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and user trust. HTTPS usage is implied but not explicitly confirmed in the provided data. The absence of WHOIS data due to query limits restricts full domain legitimacy verification. Security posture is moderate with room for improvement in headers and privacy compliance. No WAF or blocking mechanisms were detected, and no adult or explicit content is present, making the site safe for general audiences. Overall, the site presents a credible and professional business front but should enhance privacy and security practices to improve trust and compliance.