Security Directory

D

Drive eO

driveeo.com

49

Drive eO is a specialized engineering and consulting company focused on the design and manufacture of prototype electric and hybrid vehicles, particularly in the high-performance and racing sectors. Their services include integration of electric drive systems, motor controllers, custom battery packs, and supervisory controllers. The company targets electric vehicle enthusiasts, racing teams, and prototype developers, positioning itself as a niche provider in sustainable transportation technology. The website reflects a small but professional operation with consistent branding and good content quality. Technically, the website is built on WordPress with modern SEO tools like Yoast and integrates social media platforms such as Twitter and Facebook. Hosting and DNS services are provided via Cloudflare, ensuring good performance and HTTPS security. However, DNSSEC is not enabled, and security headers are missing, indicating room for improvement in security hardening. Analytics usage is moderate with Google Analytics tracking but lacks clear privacy and cookie policies. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks explicit privacy, cookie, and security policies, as well as incident response contacts or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business history and shows no suspicious patterns, supporting the legitimacy of the domain. Overall, the website is functional, professional, and secure at a basic level but would benefit from enhanced privacy compliance, security headers, and transparency around data protection and incident response to improve trust and compliance posture.

Mediaplans Ltd. operates as a full service digital marketing agency based in Latvia, focusing on connecting people and products through strategy and technology. Their website positions them as a provider of digital services tailored to startups and large companies, emphasizing innovative ideas, quality production, and customer success. The company was founded in 2015 and maintains a professional online presence with clear contact information and active social media profiles. Technically, the website is built on WordPress with modern JavaScript libraries and SEO tools, delivering a moderate performance and good mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data reduces domain trustworthiness, suggesting a need for better domain registration transparency. Overall, the site is professional and functional but would benefit from enhanced privacy compliance and security disclosures.

D

Durham University

dur.ac.uk

65

Durham University operates as a prestigious higher education institution in the United Kingdom, offering a wide range of undergraduate, postgraduate, and research programs. The website reflects a mature digital presence with comprehensive content targeting prospective students, current students, researchers, and alumni. The institution emphasizes global partnerships, student support, and research impact, positioning itself as a leading academic entity. The domain's long registration history and direct registration with Nominet reinforce its legitimacy and trustworthiness. Technically, the website employs modern JavaScript frameworks, integrates multiple analytics and tracking tools, and is optimized for mobile and accessibility standards. However, explicit privacy, cookie, and security policies are not evident in the provided content, which may impact compliance and user trust. Security posture is strong with HTTPS and best practices observed, but could be improved with clearer policy disclosures and security headers. Overall, the website is professional, content-rich, and credible, with room for enhanced privacy transparency and incident response readiness.

N

Neomājas

neomajas.lv

47

Neomājas is a Latvian company specializing in the sale and installation of wooden garden houses, saunas, garages, playgrounds, and related wooden constructions. The company targets customers in Latvia and surrounding regions seeking quality wooden leisure and garden products. Their business model combines e-commerce with direct sales and installation services, positioning them as a medium-sized regional supplier with a diverse product catalog. Technically, the website is built on the Magento platform, utilizing common JavaScript libraries such as jQuery and Prototype.js, and integrates marketing and analytics tools like Google Analytics, Google Tag Manager, and Facebook SDK. The site employs HTTPS and a cookie consent mechanism, indicating basic privacy compliance. However, explicit security policies and incident response information are not found, and WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the website demonstrates good content quality, technical implementation, and business credibility, with room for improvement in security headers and privacy transparency.

A

Austell.com

austell.com

38

Austell.com is a local online city guide focused on Austell, Georgia, providing residents and visitors with information about attractions, restaurants, hotels, real estate, and community news. The website operates as a media platform with a content and advertising-based business model, targeting local audiences interested in exploring and living in Austell. The site maintains a consistent brand presence and offers regularly updated local news and advertisements from regional businesses. Technically, the website is built on WordPress CMS using the Newsmag theme and WPBakery Page Builder, integrating common technologies such as jQuery, Google Analytics, and Facebook SDK. The site is mobile-optimized with good SEO practices, though accessibility features are basic. Performance is moderate, and the site uses HTTPS with a good SSL configuration. From a security perspective, the site has HTTPS enabled and does not expose sensitive data in the HTML. However, it lacks important security headers and does not provide a security policy or vulnerability disclosure mechanism. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms, which could pose compliance risks under GDPR or similar regulations. Overall, Austell.com presents a moderate risk profile with good business credibility but needs improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

S

SIA "KRISTĪNE 1"

medveikals.lv

47

Medveikals.lv operates as a specialized Latvian e-commerce platform offering a wide range of medical supplies focused on physiotherapy, rehabilitation, and healthcare products. The company behind the site is SIA "KRISTĪNE 1", with clear contact details and a physical presence in Riga and Valdlauči. The website targets healthcare professionals, patients, and medical institutions within Latvia, providing both retail and professional medical products. The business model centers on online sales complemented by a physical store presence, positioning itself as a niche player in the Latvian healthcare retail market. Technically, the website is built on the PrestaShop CMS platform, utilizing common web technologies such as jQuery, Google Analytics, and Facebook SDK for marketing and analytics. The site is mobile-optimized with a structured navigation system and good SEO practices. Performance is moderate, with room for improvement in accessibility and modernizing some libraries. From a security perspective, the site enforces HTTPS and uses secure form tokens, but lacks advanced security headers and explicit incident response or security policy disclosures. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is addressed with GDPR-aligned privacy and cookie policies, including a consent banner. Overall, the website presents a professional and trustworthy front for a small healthcare retail business. The lack of WHOIS data limits domain legitimacy verification, but the consistent business information and secure infrastructure reduce risk. Strategic improvements in security headers, updated libraries, and enhanced transparency around security policies would strengthen the security posture and trustworthiness.

T

Trend News Agency

trend.az

70

Trend.az is a leading regional news agency focused on Azerbaijan and neighboring countries, providing news content in Russian with alternate language versions. The website offers news articles, video content via Trend TV, and a subscription-based news terminal service. The business model relies on advertising and subscription revenues, targeting Russian-speaking audiences interested in regional politics, economy, and society. Technically, the site employs modern analytics and advertising technologies including Google Analytics 4, Yandex Metrika, Google Publisher Tags, and Facebook SDK, with a cookie consent mechanism powered by CookieYes. Security posture is strong with HTTPS enforced, security headers present, and bot protection via Google reCAPTCHA. However, explicit privacy policy and terms of service pages are not found in the provided content, and no direct contact or incident response information is available. Overall, the site is professional, well-branded, and trustworthy, but could improve compliance transparency and accessibility.

Technics is a premium audio brand operating under Panasonic, targeting Finnish consumers with high-fidelity audio products such as headphones, turntables, and amplifiers. The website is professionally designed, mobile-optimized, and uses modern web technologies including Adobe Experience Manager CMS, jQuery, and Google Tag Manager. It implements a cookie consent mechanism via OneTrust, indicating awareness of privacy compliance requirements. However, the absence of visible privacy policy and terms of service pages, as well as missing WHOIS registration data for the domain, raise concerns about transparency and domain legitimacy. Security posture is generally good with HTTPS enforced, but lacks explicit security headers and vulnerability disclosure information. Overall, the site presents a trustworthy and professional front but would benefit from enhanced compliance and security disclosures.

F

FICSA

ficsa.org

49

FICSA is a well-established federation representing international civil servants, advocating for their rights and working conditions within interagency bodies and legislative organs of the common system. The organization operates primarily as a non-profit entity based in Switzerland, with a global membership and over 70 years of history. Their key services include advocacy, training, webinars, publications, and organizing meetings and councils. The website reflects a professional and consistent brand image with clear navigation and relevant content targeted at international civil servants and related stakeholders. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery, Slick Carousel, and Select2. It uses Google Fonts and integrates social media SDKs for Facebook and Twitter, alongside AddThis for sharing. The site is mobile-optimized with good SEO and accessibility basics, though there is room for improvement in accessibility compliance. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, DNSSEC is not enabled, and there is no visible security policy or incident response information. The site includes a cookie consent mechanism and privacy policy, indicating basic GDPR compliance. No critical vulnerabilities or suspicious domains were found. WHOIS data confirms the domain's legitimacy and long-standing registration consistent with the organization's profile. Overall, the website presents a trustworthy and credible digital presence with good content quality and technical implementation. Strategic recommendations include enabling DNSSEC, publishing a security policy and incident response contacts, and enhancing accessibility features to improve compliance and user experience.

M

MadSword Studios

madsword.com

57

MadSword Studios is a small technology company based in Latvia specializing in the development of mobile and VR games across platforms including iOS, Android, and Windows Phone. Their portfolio includes a variety of casual, puzzle, and VR games targeting mobile users and social network gamers. The website presents a professional and consistent brand image with good content quality and clear navigation. Technically, the site uses common JavaScript libraries and Google services, hosted behind Cloudflare DNS, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and domain registration protections in place, but lacks advanced DNS security (DNSSEC) and security headers. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism or GDPR compliance indicators. Business credibility is supported by clear contact information and social media presence. Overall, the website is functional and trustworthy but could improve in privacy compliance and security best practices.

Latvijas Universitātes Studentu padome (LU SP) serves as the official student council of the University of Latvia, providing representation and support to the student body. The organization offers a variety of services including mentorship programs, social initiatives, project competitions, and cultural events, targeting university students primarily. The website is bilingual (Latvian and English) and well-structured to serve its academic community. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies such as Google Fonts, jQuery, and Bootstrap, ensuring a responsive and accessible user experience. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, it lacks visible security headers and explicit security policies or incident response contacts, which are recommended for enhanced security posture. The absence of WHOIS data due to query limits restricts full domain legitimacy verification, but the website's affiliation with the University of Latvia and consistent branding provide strong trust signals. Overall, the site demonstrates good digital maturity and compliance, with room for improvement in security transparency and domain registration visibility.

B

Burzum

burzum.lv

59

Burzum is a Latvian digital agency specializing in web development, application development, and digital advertising services. The company targets clients seeking creative and human-centered digital solutions primarily in Latvia. The website presents a professional portfolio showcasing various projects, indicating a small but focused business model. The site is bilingual with Latvian as the primary language and an English option, supporting a regional audience. Technically, the website uses standard web technologies including jQuery, Facebook SDK, and Google DoubleClick for analytics and advertising. The site is served over HTTPS with no visible security issues in the HTML content, indicating a good baseline security posture. However, the absence of privacy and cookie policies, as well as missing security headers, suggests room for improvement in compliance and security best practices. Contact information is clearly provided, enhancing business credibility. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification.

L

Latvijas Privātā un Iespējkapitāla asociācija

lvca.lv

38

Latvijas Privātā un Iespējkapitāla asociācija (LVCA) is a Latvian private equity and venture capital association representing 40 organizations in the finance sector. Founded in 2003, it serves as a key industry body promoting private equity financing, facilitating member collaboration, and advocating with government institutions. The website presents a professional image with clear business information, leadership team details, and event news. Technically, the site uses modern web standards, including HTTPS, external trusted scripts, and responsive design, though it lacks advanced CMS or frameworks. Security posture is generally good with HTTPS enforced, but absence of security headers and cookie consent mechanisms indicate room for improvement. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is credible and functional, serving its target audience effectively.

V.L.S Systems, Inc. is an established IT products and services company founded in 1995, providing software products, contingent IT staffing, custom software development, and IT solutions primarily to government agencies, Fortune 500 companies, and emerging businesses across diverse sectors such as financial services, healthcare, manufacturing, and telecommunications. The company holds a SEI CMMi Level 3 certification, indicating a mature software development process. The website reflects a basic digital presence with legacy design elements and limited modern features. Technical infrastructure includes use of jQuery, Google Analytics, and Facebook SDK, but lacks modern security practices such as HTTPS enforcement and security headers. The security posture is weak, with no visible privacy or cookie policies and no incident response contacts, which poses compliance and trust risks. Overall, the website is functional but requires significant improvements in security, privacy compliance, and user engagement to enhance trust and professionalism.

L

Libertu

sula.lv

50

The website sula.lv is a small business platform operated by the Libertu family, specializing in organic birch sap products including beverages, tapping kits, and related accessories. The business has an international presence with exports to countries such as Germany, Taiwan, and China, and participates in various trade shows and expos. The website is hosted on the Posthaven platform with media assets served from Amazon S3, featuring bilingual content in Latvian and English. Technically, the site uses modern web technologies and enforces HTTPS, but lacks advanced security headers and formal privacy or cookie policies. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site presents a legitimate small business with good content quality and moderate technical maturity but needs improvements in privacy compliance and security best practices.

A

Adgett - Marketing communication agency

adgett.com

49

Adgett is a Latvia-based marketing communication and design agency established in 2013, offering a range of services including advertising campaigns, brand activation, in-store activities, digital communication, and POS material production. The company targets businesses seeking comprehensive marketing solutions and positions itself as a provider delivering more value and perfection in design and campaign execution. The website reflects a professional and consistent brand image with active social media integration and clear contact information. Technically, the website is built on WordPress using popular frameworks and plugins such as WPBakery, Elementor, and Yoast SEO, indicating a modern and maintainable infrastructure. Hosting appears to be Latvia-based, consistent with the business location. Performance and mobile optimization are good, though accessibility features are basic. SEO is well addressed with proper meta tags and structured data. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled and no explicit security headers were detected, suggesting room for improvement. The cookie consent mechanism is implemented, supporting GDPR compliance, but no privacy policy or terms of service pages were found, which is a compliance gap. No incident response or security policy information is present. Overall, the website is trustworthy and professional with a solid business presence. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing privacy and terms policies, and formalizing incident response information to improve compliance and security posture.

N

Nippon Auto UAB

nipponauto.lt

38

Nippon Auto UAB operates as the official Honda dealership in Lithuania, offering a wide range of Honda automobiles, motorcycles, spare parts, and servicing solutions. The company targets Lithuanian consumers interested in Honda vehicles, providing both new and used vehicle sales alongside after-sales services such as repairs and maintenance. The website reflects a medium-sized business with a consistent brand presence and a clear market position as Honda's official representative in the region. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates common analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook SDK. The site is mobile-optimized and provides good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and Google reCAPTCHA for form protection but lacks some advanced security headers and incident response disclosures. Privacy compliance is basic with a privacy policy present but no explicit cookie consent mechanism. Overall, the website is professional and trustworthy, with room for improvement in security and privacy transparency.

C

CAVIO CASA

cavio.it

56

CAVIO CASA is a small-sized Italian furniture producer specializing in contemporary Italian furniture and interior design products. The company offers a range of products including beds, sofas, tables, chairs, lighting, carpets, and mirrors, targeting consumers and businesses interested in high-quality Italian design. The website is professionally designed with clear navigation, multiple language support, and an online catalogue facilitating e-commerce and showroom sales. Technically, the site uses modern JavaScript libraries and tracking tools, hosted by A2 Hosting, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and clientTransferProhibited domain status, but lacks DNSSEC and some security headers. Privacy and cookie policies are present and GDPR compliant, though incident response and security policies are not explicitly published. Overall, the website is trustworthy and credible with room for security enhancements.

S

Solspace

solspace.com

65

Solspace is a specialized web development company with over 20 years of experience, focusing on Craft CMS, ExpressionEngine, and custom web solutions. They serve primarily small to medium-sized businesses seeking reliable, scalable, and revenue-driving websites. The company positions itself as a strategic partner offering proactive support and innovative web technologies. Technically, the website is well-built with modern tracking and analytics tools, optimized for performance and mobile use. Security posture is strong with HTTPS and domain protections, though improvements can be made in DNSSEC and visible privacy compliance mechanisms. Overall, the site reflects a mature, professional business with a strong market presence and trustworthy domain registration.

P

Privātskola Patnis

patnis.lv

48

Privātskola Patnis is a Latvian private educational institution offering a STEAM-based curriculum from preschool through 12th grade, including an arts school. The institution emphasizes creativity, interdisciplinary learning, and personalized education, positioning itself as an innovative leader in Latvia's education sector. The website is well-structured, content-rich, and targets parents seeking modern educational options for their children. Technically, the site is built on Drupal 10 with Bootstrap 5, integrates Google Analytics and Facebook SDK for tracking, and is mobile optimized with good accessibility and SEO practices. Security posture is adequate with HTTPS enforced, but lacks some security headers and formal security policies. WHOIS data is unavailable due to query limits, limiting domain trust assessment. Overall, the site is professional and trustworthy with room for security and compliance improvements.

I

Intercell Virtual Mentoring Platform

intercellworld.com

64

Intercell Virtual Mentoring Platform operates an online career mentorship service offering 1-1 exclusive mentoring from mentors associated with over 5000 brands and covering more than 250 career specializations. The platform targets individuals seeking career guidance and mentorship, positioning itself as a global player in the education sector. The website presents a professional design with good user experience and mobile optimization, leveraging modern web technologies including Bootstrap, Flatpickr, and integration with Google Analytics and Facebook Pixel for tracking and marketing purposes. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and no explicit GDPR compliance indicators. Overall, the website is functional and professional but requires improvements in transparency, privacy, and security documentation to enhance trustworthiness and compliance.

S

SIA “FRESH MEDIA"

armadillo.lv

52

Armadillo.lv is a Latvian marketing and media agency operating under the legal entity SIA “FRESH MEDIA". The company offers a range of creative services including marketing materials design, web development, social media communication, and campaign management, targeting local Latvian clients. The website is professionally designed with a clear portfolio showcasing their work, indicating a small but established presence in the Latvian media sector. Technically, the site uses a PyroCMS backend with a variety of JavaScript libraries including jQuery, Bootstrap, and Owl Carousel, though some libraries like jQuery are outdated, posing potential security risks. The site is accessible over HTTPS and integrates common marketing and analytics tools such as Facebook Pixel and Google Analytics, but lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with no visible security headers and no forms on the homepage, reducing attack surface but also limiting user interaction. Overall, the site is functional and professional but would benefit from enhanced security practices and privacy compliance to improve trust and reduce risk.

R

Runas Kursi

runaskursi.lv

53

Runas Kursi is a Latvian-based education provider specializing in public speaking and presentation skills training. The company offers group courses, VIP training, individual consultations, and event moderation services. The website demonstrates a professional presence with client testimonials and logos from reputable companies, indicating a solid market position within the education sector. Technically, the site is built on WordPress with a modern tech stack including jQuery, Google Analytics, Facebook SDK, and marketing tools like Mailchimp and AddThis. The site is HTTPS secured with reCAPTCHA protecting forms, but lacks explicit security headers and privacy/cookie policies, which are areas for improvement. Overall, the security posture is moderate with no visible vulnerabilities, but privacy compliance is weak due to missing policies. The domain WHOIS data is unavailable due to query limits, but the website content suggests legitimacy and consistent operation since 2015. Strategic recommendations include adding privacy and cookie policies, enhancing security headers, and publishing incident response contacts to improve trust and compliance.

M

MTX Connect

mtxc.eu

50

MTX Connect is a telecommunications provider specializing in global mobile internet connectivity for travelers through 4G/5G eSIM and SIM card offerings. The company positions itself as a private mobile operator with flat rate pricing worldwide and additional features such as free chat. The website is professionally designed with clear navigation and multiple data package options tailored for different regions and durations. The presence of Trustpilot customer reviews enhances trustworthiness. Technically, the site uses modern frameworks like UIkit and integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, Mixpanel, and Yandex Metrika, indicating a mature digital marketing approach. Security posture is moderate with HTTPS implied but lacks visible security headers and explicit security policies. Privacy compliance is partial with cookie consent implemented but no visible privacy policy in the provided content. WHOIS data is privacy protected, which is common for telecom businesses, but limits full trust assessment. Overall, the site is functional and credible but could improve transparency and security documentation.

AS Neo is a Latvian company specializing in providing a wide range of high-quality food additives and raw materials to food manufacturers. Established in 1998, the company has positioned itself as a strong and dynamic player in the manufacturing and retail sectors, offering products such as flavorings, enzymes, stabilizers, antibiotic and allergen testing kits, and logistics services. The website reflects a professional business model focused on B2B sales, supported by a knowledgeable team and multiple subsidiary e-commerce platforms. Technically, the site is built on Joomla CMS with modern frameworks like UIkit and Bootstrap, and integrates Google Analytics and Facebook SDK for marketing and analytics purposes. The security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is well-structured, GDPR compliant, and demonstrates trustworthiness through certifications and comprehensive contact information.

D

Durham University

durham.ac.uk

66

Durham University is a well-established higher education institution in the United Kingdom, offering a broad range of undergraduate, postgraduate, and international study programs. The website reflects a strong market position with a focus on research impact, student support, and global partnerships. The domain's long registration history and direct registration with Nominet reinforce its legitimacy. Technically, the site employs modern web technologies including Alpine.js, Google Tag Manager, and various analytics and tracking tools, managed via the Terminalfour CMS platform. The website is mobile-optimized, accessible, and SEO-friendly, providing an excellent user experience. Security-wise, the site uses HTTPS and secure form practices but lacks explicit security headers and published security policies or incident response contacts. Privacy compliance is basic, with no visible privacy or cookie policies or consent mechanisms in the provided content. Overall, the site is professional and trustworthy but could improve transparency and compliance in privacy and security disclosures.

S

SIA „Patrika“

barbora.lv

71

Barbora.lv is a professional online grocery and daily goods retailer operating primarily in Latvia. The website offers a comprehensive e-commerce platform with home delivery and pickup options, supported by a robust technical infrastructure including modern JavaScript frameworks, multiple payment gateways (Adyen, NeoPay, Kevin), and social login capabilities. The company behind the site is SIA „Patrika“, a large entity in the retail sector. The site demonstrates good digital maturity with mobile optimization, clear navigation, and extensive use of analytics and marketing tools. Security posture is solid with HTTPS enforcement, cookie consent via Cookiebot, and integration of secure payment providers, although some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. WHOIS data was unavailable due to query limits, limiting domain registration verification. Overall, the site is trustworthy and professionally managed, serving a large customer base in Latvia.

T

tinyBuild

tinybuild.com

65

tinyBuild is a recognized game label specializing in publishing and developing popular indie video games such as Hello Neighbor and Potion Craft. The company targets gamers and indie game enthusiasts, positioning itself as a key player in the indie gaming market. The website is professionally designed using the Wix platform, featuring good content quality and clear navigation. Technical infrastructure leverages Wix's Thunderbolt framework along with common analytics and consent management tools, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforcement and standard security headers, though the absence of a public security policy and incident response details suggests room for improvement. Privacy compliance is addressed with comprehensive privacy and cookie policies including consent mechanisms. Overall, the site is trustworthy and professional, but the lack of WHOIS data and direct contact information slightly reduces business credibility. Strategic recommendations include enhancing security transparency, adding vulnerability disclosure, and improving contact accessibility.

C

CINAMON | Kino piletid, Kino bilietai, Kinoteātra biļetes, Билеты в кино, Cinema tickets

cinamon.ee

60

CINAMON is an online cinema ticketing platform serving a multilingual audience primarily in the Baltic region. The website offers cinema ticket sales with a focus on regional languages and markets. The technical infrastructure is modern, leveraging Vue.js and popular video playback and analytics libraries, indicating a mature digital presence. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and professional but requires improvements in privacy and security transparency to enhance trust and compliance.

N

New Basket Brindisi

newbasketbrindisi.it

47

New Basket Brindisi is the official website of the primary basketball club in Brindisi and the Puglia region of Italy. The club, sponsored by Valtur, has a strong local presence and provides comprehensive information about its team roster, staff, news, ticketing, and merchandise. The website targets basketball fans and local sports enthusiasts, offering a professional and well-branded digital presence. Technically, the site is built on WordPress with popular plugins such as Yoast SEO and SportsPress Pro, and integrates analytics and social media SDKs for user engagement and tracking. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks important security headers and shows deprecated PHP warnings in plugins, indicating areas for improvement. Privacy compliance is weak, with no visible privacy or cookie policies, which could pose regulatory risks. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy practices.

A

Aftermarket.pl Limited

pdk.pl

67

Aftermarket.pl Limited operates the largest domain marketplace in Poland, providing a platform for buying, selling, and auctioning internet domain names. The company also offers complementary services such as hosting, mail, SSL certificates, and website creation tools, targeting domain investors, businesses, and internet entrepreneurs. The website is professionally designed with clear navigation and multilingual support, reflecting a mature digital presence. Technically, the site employs modern JavaScript technologies, integrates with major social and analytics platforms, and uses HTTPS with secure form handling, although security headers could be enhanced. Privacy and cookie consent mechanisms are robust and GDPR compliant, supporting user data protection. The domain offered for sale (pdk.pl) lacks public WHOIS data, which is typical for domains listed on marketplaces and does not indicate suspicious activity. Overall, the platform demonstrates a strong market position in the Polish domain industry with good security and privacy practices.

L

Latvijas Radio

latvijasradio.lv

58

Latvijas Radio is a well-established public service media broadcaster in Latvia, operating since 1925. It offers multiple radio channels and a broad range of cultural, news, and entertainment content targeting Latvian-speaking audiences. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. The technical infrastructure includes modern web technologies and analytics tools, ensuring a good user experience. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with cookie consent and comprehensive privacy policies. Overall, the site demonstrates high trustworthiness and professionalism consistent with a national public broadcaster.

D

Dingo&Schwarz

dingoschwarz.com

57

Dingo&Schwarz is a creatively effective full-service advertising agency based in Riga, Latvia, operating under the parent company mixd.group. The company specializes in blending sharp strategies with creative excellence to deliver impactful advertising campaigns across traditional and digital channels. Their portfolio includes diverse projects for notable clients, showcasing their expertise in creative direction, strategy, and production. The website reflects a professional and modern digital presence with rich multimedia content and clear navigation. Technically, the site uses modern JavaScript libraries, integrates social media and analytics tools, and is optimized for mobile devices. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. The absence of WHOIS registration data is a concern but does not detract significantly from the overall legitimacy given the professional presentation and business information. Strategic recommendations include enhancing security headers, publishing security policies, and improving transparency around incident response. Overall, the website and business demonstrate a mature digital footprint with room for security and compliance improvements.

S

S-Print Baltic

s-print.lv

27

S-Print Baltic is a small Latvian company specializing in printing and advertising services, including commercial spaces, exhibitions, industrial screen-printing, and polygraphy. The website indicates a service-oriented business model targeting organizations needing various printing solutions. The digital infrastructure is based on WordPress with the Enfold theme, utilizing common web technologies such as jQuery, Google Fonts, and Facebook SDK. However, the site lacks HTTPS, which is a critical security shortfall. Security measures include Google reCAPTCHA v3 for form protection, but no advanced security headers or policies are evident. The absence of privacy and cookie policies, contact information, and WHOIS transparency reduces trust and compliance posture. Overall, the website is functional but basic, with moderate technical implementation and poor privacy compliance.

J

Junior Achievement Latvia

jalatvia.lv

48

Junior Achievement Latvia is a well-established non-profit educational organization founded in 1991, focusing on practical business education and leadership development for youth in Latvia. The website serves as a portal for students, teachers, and schools to access programs such as student companies, leadership initiatives, and career shadowing events. The organization maintains partnerships with reputable entities such as Swedbank and the Latvian Investment and Development Agency, enhancing its credibility and reach. Technically, the website employs standard web technologies including jQuery, Slick Carousel, Google Analytics, and Facebook SDK. It uses HTTPS and has a moderate performance profile with basic mobile optimization. However, it lacks some modern security headers and cookie consent mechanisms, which are recommended for compliance and security enhancement. From a security perspective, the site shows good practices like HTTPS usage and no visible sensitive data exposure. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the presence of clear contact information, privacy policy, and partner logos supports trustworthiness. The site does not currently provide explicit security policies or incident response contacts. Overall, the website is professional, content-rich, and serves its educational mission effectively. Strategic improvements in security headers, cookie consent, and transparency around security policies would further strengthen its posture and compliance.

ALANDEKO is a Latvian small business specializing in the manufacturing, design, measurement, installation, and servicing of window coverings including blinds, curtains, and awnings. The company emphasizes local production with warranty and after-sales service, targeting Latvian consumers and businesses seeking quality interior window solutions. The website is built on WordPress with modern SEO and analytics tools integrated, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though lacking some advanced security headers and explicit privacy and terms policies. Overall, the business appears legitimate and professionally presented, though improvements in transparency and contact information would enhance trust and compliance.

The Latvijas Universitātes Cietvielu fizikas institūts is a research institute affiliated with the University of Latvia, specializing in solid state physics and materials science. The website serves as a portal for research information, educational resources, events, and scientific services. It targets researchers, students, and industry partners, providing access to projects, publications, and laboratory facilities. The institute holds a reputable position within the academic community in Latvia, supported by its university affiliation and presence in international rankings. Technically, the website is built on TYPO3 CMS and employs modern web technologies including Google Analytics, Matomo, Bootstrap, and social media SDKs. The site is mobile-optimized, accessible, and SEO-friendly, with a clear navigation structure and professional design. Cookie consent and privacy policies are implemented in compliance with GDPR, offering users granular control over data collection. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and dedicated security policy pages. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data due to query limits limits domain trust verification, but the website's university affiliation and content quality support its legitimacy. Overall, the website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and transparency policies could enhance its security posture and trustworthiness further.

The website www.karters.lv serves as a community hub for velotriāls (bike trial) enthusiasts primarily in Latvia. It provides information on training, demonstrations, competitions, and club activities. The site is built on WordPress and integrates social media platforms such as Facebook, Instagram, YouTube, and TikTok to engage its audience. The content is rich with event news, media galleries, and community updates, targeting a niche sports audience. Technically, the site uses an older WordPress version and jQuery library, with embedded third-party scripts for analytics and social media integration. Security posture is moderate but lacks modern security headers and explicit privacy or cookie policies, which impacts compliance and trust. WHOIS data is unavailable due to query limits, limiting domain legitimacy verification. Overall, the site is functional and community-focused but would benefit from security and privacy enhancements to improve trust and compliance.

B

Baltijas Informācijas Tehnoloģijas SIA

bit.lv

62

Baltijas Informācijas Tehnoloģijas SIA (BIT) is a well-established Latvian IT company founded in 1992, specializing in IT infrastructure delivery, implementation, maintenance, and authorized servicing of HP, HPE, and Acer equipment. The company positions itself as a trusted IT partner for businesses in Latvia and the Baltic region, emphasizing quality, trust, and long-term experience. Their website reflects a professional and consistent brand image with clear communication channels and a focus on certifications and compliance. Technically, the website uses modern web technologies including Bootstrap, jQuery, and integrates analytics and marketing tools such as Google Analytics and Facebook Pixel. Hosting is managed via Microsoft Online services, indicating a reliable infrastructure. Security posture is strong with HTTPS enforced, ISO certifications, and an industrial security certificate, although some security headers could be improved and incident response contacts are not explicitly provided. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, BIT demonstrates a mature digital presence aligned with its business maturity and market position.

Flight Consulting Group is a well-established business aviation holding company based in Latvia, founded in 2000. It offers a broad range of aviation services including flight support, ground handling, VIP charter flights, trip support, and aviation consulting. The company operates a major business aviation center, FBO RIGA, and has several subsidiaries specializing in dispatch, travel agency services, and aviation infrastructure development. The website is professionally designed with good content quality and clear navigation, supporting its market position as a leading aviation service provider in Europe and the Baltics. Technically, the site uses modern analytics and tracking tools, is mobile optimized, and employs HTTPS with some security best practices, though it lacks some security headers and privacy compliance documentation. The WHOIS data is incomplete and lacks transparency, which slightly reduces trust but does not negate the legitimacy supported by the detailed business information and certifications. Overall, the site presents a credible and professional business presence with room for improvement in privacy and security disclosures.

S

SIA CMB

cmb.lv

49

SIA CMB is a Latvian engineering office established in 2005, providing comprehensive multi-disciplinary engineering services including construction process management, building supervision, expertise, and sustainable building solutions. The company positions itself as a leading service provider in Latvia with a professional team of certified specialists and a strong portfolio of over 1000 projects. The website reflects a mature digital presence built on Joomla CMS, integrating modern front-end libraries and analytics tools. Security posture is solid with HTTPS enforced and email obfuscation, though security headers and explicit incident response policies are absent. Privacy compliance is well addressed with cookie consent and a privacy policy in Latvian. Overall, the website and business information indicate a trustworthy and professional organization with room for improvement in security transparency and WHOIS data availability.

L

Latvijas Hokeja Federācija

lhf.lv

53

Latvijas Hokeja Federācija (LHF) is the national governing body for ice hockey in Latvia, providing comprehensive information about Latvian ice hockey including news, statistics, tournaments, teams, referees, and organizational details. The website targets ice hockey players, fans, coaches, and officials within Latvia and offers a centralized platform for updates and resources related to the sport. The business model is non-profit and focused on sports federation activities, supported by multiple sponsors and partners. Technically, the website employs modern JavaScript frameworks such as Vue.js and jQuery, integrates social media SDKs, and uses Google Analytics for visitor tracking. The site is mobile-optimized with good navigation and content relevance, though accessibility features are basic. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks some security headers and explicit privacy and terms policies. WHOIS data is unavailable due to query limits, but website content and contact details indicate legitimacy. Overall, the site is professional and trustworthy with room for improvement in privacy compliance and security best practices.

M

Monaco Info

monacoinfo.com

57

Monaco Info is a small media company focused on delivering news, video content, and live streaming services centered around Monaco. The website is well-structured, professionally designed, and targets residents and visitors interested in local news and events. The technical infrastructure is based on WordPress with modern web technologies, providing a good user experience and mobile responsiveness. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and DNSSEC. No explicit privacy or security policies are published, which is a compliance gap. The domain is long-established and consistent with the business claims, enhancing trustworthiness.

K

Kambja vald

kambja.ee

55

Kambja vald is a municipal government entity serving the Kambja region in Estonia, providing a broad range of public services, community news, and administrative information to its residents. The website serves as an official portal for local governance, social services, education, culture, and infrastructure-related information. It targets local residents and stakeholders, offering access to documents, contact details, and event calendars. The business model is typical for a government authority, focusing on service provision rather than commercial activities. Technically, the website is built on the Liferay CMS platform, utilizing common web technologies such as jQuery, Bootstrap, and FontAwesome. It integrates third-party services like Google Analytics and Facebook SDK for analytics and social media functionalities. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technologies like jQuery are outdated, which could pose security risks. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. There is no evidence of advanced security headers or explicit security policies and incident response information publicly available. The use of outdated libraries and lack of visible security headers suggest room for improvement in security posture. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is a credible and professional government portal with good content quality and business credibility. Strategic recommendations include updating outdated libraries, implementing security headers, and publishing explicit security and incident response policies to enhance trust and compliance.

S

Solo Build It!

sitesell.com

60

Solo Build It! (SBI!) is an online platform focused on enabling solopreneurs to build profitable online businesses rather than just websites or blogs. The platform targets individual entrepreneurs seeking comprehensive tools and guidance to establish and grow their online presence. The website is professionally designed with good SEO and mobile optimization, leveraging modern web technologies and third-party marketing and analytics tools such as Google Analytics, Facebook Pixel, and Microsoft Clarity. However, the absence of WHOIS registration data and domain ownership details introduces uncertainty regarding domain legitimacy. Security posture is weak due to lack of visible security headers and absence of explicit privacy or cookie policies, which also impacts privacy compliance. Overall, the site presents a moderate risk profile with room for improvement in transparency and security.

Riga Hockey Cup is a youth ice hockey tournament organizer based in Latvia, providing a platform for various age groups to compete in a well-structured European championship. The website offers multilingual support and comprehensive event information, targeting youth hockey teams, coaches, and fans. The digital infrastructure leverages common web technologies such as jQuery, Fancybox, and social media integrations, with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though security headers and explicit incident response policies are absent. Privacy compliance is basic with a privacy policy and cookie consent implemented, reflecting GDPR awareness. The absence of WHOIS data limits domain legitimacy verification, but the site appears professional and trustworthy overall.

U

United Nations Alliance of Civilizations (UNAOC) in partnership with BMW Group

interculturalleaders.org

58

InterculturalLeaders.org is a non-profit digital platform established in 2013 as a partnership between the United Nations Alliance of Civilizations (UNAOC) and the BMW Group. It serves as a skills and knowledge-sharing hub for civil society organizations and young leaders focused on intercultural dialogue and addressing cross-cultural tensions. The platform offers networking, training, mentorship, and funding opportunities to its community, positioning itself as a niche but credible player in the non-profit sector dedicated to peacebuilding and social inclusion. Technically, the website is built on WordPress 5.1.19 and leverages common web technologies such as jQuery, Bootstrap, Font Awesome, and Google reCAPTCHA for form security. Hosting is managed via Quadranet, and the site enforces HTTPS with a Content Security Policy header. While the site is mobile-optimized and has a professional design, some accessibility and SEO features are basic. Analytics usage includes Google Analytics and Facebook SDK, indicating moderate user tracking without explicit cookie consent mechanisms. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and CAPTCHA on forms but lacks advanced security headers and DNSSEC. No exposed sensitive data or vulnerabilities were detected in the HTML content. The WHOIS data shows privacy protection typical for non-profit organizations, with domain age consistent with the business history, supporting legitimacy. Overall, the website is a credible and professionally maintained platform with moderate technical maturity and security posture. However, it lacks explicit privacy and cookie policies, which impacts privacy compliance scores. Strategic improvements in security headers, privacy disclosures, and cookie consent would enhance trust and compliance.

A

AS Arstikeskus Confido

1220.ee

45

The website 1220.ee serves as the official Estonian health advice line platform, providing telephone and web chat medical consultation services. It targets Estonian residents and callers abroad, offering guidance on medical issues, prescription renewals, and emergency care decisions. The service operates under the auspices of the Estonian Health Insurance Fund (Tervisekassa) and collaborates with healthcare providers and pharmacies. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages (Estonian and Russian). Technical infrastructure includes modern JavaScript libraries, CDN-hosted resources, and integration with Facebook SDK and Google Tag Manager for analytics and marketing purposes. The site uses HTTPS and shows no signs of blocking or WAF interference, indicating good accessibility and security basics. However, it lacks visible privacy and cookie policies, which impacts GDPR compliance and privacy posture. Contact information is limited to phone numbers with no email or physical address disclosed. No forms collecting personal data are present on the main page, reducing immediate data protection concerns. Overall, the site demonstrates a solid business credibility and technical foundation but requires improvements in privacy compliance and security policy transparency.

I

Invaru OÜ

invaru.ee

65

Invaru OÜ operates as a specialized provider of assistive devices and healthcare-related products in Estonia, offering a comprehensive range of mobility aids, incontinence products, rehabilitation equipment, and personal care items. The company supports its customers through both online e-commerce and multiple physical store locations, providing sales, rental, repair, and consultation services. Their market position is that of a trusted regional player catering to individuals with special needs, elderly customers, and healthcare providers. Technically, the website is built on the nopCommerce platform, integrating modern analytics and marketing tools such as Google Analytics, Facebook SDK, and Klevu Search, reflecting a mature digital infrastructure with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security policies and vulnerability disclosure reduces transparency. Overall, the site demonstrates moderate to good professionalism and trustworthiness, with room for improvement in privacy compliance and security communication.

Valgamaa Arenguagentuur is a regional development agency based in Estonia, focused on fostering cooperation among local development organizations and providing professional support services to businesses, non-profits, and local governments. The agency aims to enhance the economic and living environment of Valgamaa county, positioning itself as a key facilitator in regional development with a focus on entrepreneurship, education, and community welfare. The website reflects this mission with clear service offerings and active engagement channels. Technically, the website employs modern frontend technologies including Tailwind CSS, Swiper.js, and Plyr.js, managed through the Greativ CMS platform. It integrates analytics and social media tools such as Google Analytics and Facebook SDK, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide visible privacy or cookie policies, which are critical for GDPR compliance. There is no incident response or vulnerability disclosure information, which could be improved to enhance trust and security posture. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.