Security Directory

M

METUS

metus.com

42

METUS is a specialized provider of professional audio and video systems and solutions, targeting sectors such as broadcast, medical, military, corporate, education, government, and news agencies. The company offers a suite of products including media asset management, ingest and streaming solutions, and NDI stream management tools. The website reflects a niche B2B business model with a focus on media technology professionals. Technically, the site uses common JavaScript libraries and tracking tools, hosted on HostGator, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. The domain is long-established since 2002, supporting legitimacy. Overall, the website is professional and functional but would benefit from enhanced security and privacy practices.

T

Tartu Loomemajanduskeskus

lmk.ee

40

Tartu Loomemajanduskeskus (LMK) is a well-established creative industries development center and incubator based in Tartu, Estonia, founded in 2009. It focuses on supporting creative enterprises through incubation programs, mentoring, training, and providing rental spaces. The organization targets creative startups and existing businesses in the South Estonia region, aiming to boost innovation and export potential in sectors such as fashion, contemporary art, film, and performing arts. The website reflects a professional and consistent brand presence with active social media engagement and regularly updated news content. Technically, the website is built on WordPress using Elementor and Yoast SEO, integrating modern JavaScript libraries like Swiper.js and jQuery. It employs Google Analytics and Jetpack for visitor tracking and performance monitoring. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Hosting and domain registration are stable and consistent with the business's geographic location. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and formal security or incident response policies. No privacy or cookie policies were found, indicating potential compliance gaps with GDPR requirements. No vulnerability disclosure or security.txt files are present, which could be improved to enhance trust and transparency. Overall, the website is functional, professional, and credible but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.

A

AS Eesti Loto

eestiloto.ee

51

AS Eesti Loto operates as the official national lottery provider in Estonia, offering a variety of lottery games such as Eurojackpot, Vikinglotto, Bingo loto, Keno, Jokker, and e-kiirloterii. The website serves as a platform for ticket sales, results checking, and account management, targeting Estonian residents interested in legal lottery gaming. The company holds a strong market position as a government-licensed entity with a medium-sized operational scale. The website's content is well-structured, professionally designed, and provides comprehensive information about games, responsible gaming, and user support.

F

Fletcher Group

fletchershipping.com

59

Fletcher Group is a UK-based company specializing in the operation and management of Offshore Platform Supply Vessels, serving the energy sector with a modern fleet and over 300 employees. Their website demonstrates a professional digital presence with clear business descriptions, client testimonials, and multiple industry certifications, positioning them as a reputable service provider in offshore logistics and vessel management. Technically, the site employs modern web technologies including Bootstrap, jQuery, and Google Analytics, with good mobile optimization and SEO practices. Security measures include HTTPS, CSRF protection, reCAPTCHA integration, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The WHOIS data is notably missing, which raises concerns about domain registration legitimacy despite the professional appearance and content of the website. Overall, the site scores well in content quality and security posture but should address domain registration transparency and enhance security policy disclosures.

T

Tilde.ai

tilde.ee

67

Tilde.ai is a technology company specializing in AI-driven language technologies, including neural machine translation, speech-to-text, text-to-speech, and conversational AI solutions. Positioned as a European leader, the company offers a broad portfolio of language and speech technology services targeting businesses and organizations seeking multilingual and AI-powered communication tools. The website is professionally designed, multilingual, and uses modern web technologies such as WordPress, Elementor, and various analytics and marketing tools. The technical infrastructure appears robust with hosting likely on Microsoft Azure and integration of multiple tracking and marketing services. Security posture is generally good with HTTPS enabled and domain registration protections, though improvements such as enabling DNSSEC and publishing explicit security and privacy policies are recommended. Overall, the site is accessible without WAF or blocking mechanisms, indicating good operational maturity.

S

ScanMarine Estonia OÜ

scanmarine.ee

46

ScanMarine Estonia OÜ is a small Estonian company specializing in the sale and rental of sea containers along with comprehensive transport and logistics services including maritime, air, road, and rail transport. Established in 2012, the company targets both business and consumer markets within Estonia and the broader EU region. Their website reflects a professional and consistent brand presence with multilingual support and e-commerce capabilities. Technically, the site is built on WordPress with WooCommerce and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and PixelYourSite, all managed with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The domain registration is consistent and long-standing, supporting the legitimacy of the business. Overall, the website demonstrates good digital maturity, compliance, and trustworthiness.

Lennuliiklusteeninduse AS operates as the national air navigation service provider in Estonia, ensuring safe and efficient air traffic management within Estonian and European airspace. The organization offers core services including air traffic control, aeronautical information services, technical system management, and ongoing development activities to modernize aviation infrastructure. The website reflects a mature digital presence built on Drupal 10, with multilingual support and integration of modern APIs such as Google Maps and Facebook SDK for enhanced user engagement. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms, although explicit security policies and incident response details are not publicly disclosed. Overall, the domain registration and website content align well, indicating a trustworthy and established entity in the transportation sector.

E

Eesti Evangeelne Luterlik Kirik

eelk.ee

46

The Eesti Evangeelne Luterlik Kirik (Estonian Evangelical Lutheran Church) operates a well-structured official website providing comprehensive information about the church's history, organization, clergy, and community activities. The site targets church members and the Estonian public, offering religious content, news, and contact details. The website is built on WordPress with Bootstrap and includes integrations such as Google Analytics and Facebook SDK for user engagement and tracking. While the site is professionally designed with good navigation and mobile optimization, it lacks explicit privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing advanced security headers and DNSSEC. The domain is well-established since 2010, registered through a reputable Estonian registrar, aligning with the church's official status. Overall, the website is credible and functional but would benefit from enhanced privacy compliance and security hardening.

D

Delfi Meedia AS

epl.ee

57

Eesti Päevaleht, operated by Delfi Meedia AS, is a leading Estonian news media outlet offering comprehensive news, opinion, and cultural content. The website demonstrates a mature digital presence with a modern tech stack including Nuxt.js and Vue.js, supported by reputable advertising and analytics providers. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy and cookie policies are present and GDPR compliant, though explicit security policies and incident response information are not publicly available. Overall, the site is professional, trustworthy, and well-optimized for performance and accessibility.

V

Visualead Ltd.

visualead.com

56

Visualead Ltd. operates a specialized online platform offering visual QR code generation services aimed at businesses and marketers seeking enhanced engagement through branded and mobile-optimized QR codes. The company positions itself as a medium-sized technology firm with a global client base including major brands, providing a SaaS model with campaign management and analytics capabilities. The website is professionally designed with good content quality, clear navigation, and mobile optimization, supporting a positive user experience. Technically, the site employs modern JavaScript libraries and tracking tools, with HTTPS enforced and secure form handling, though some security headers are missing. Privacy compliance is partially addressed with clear privacy and terms of use pages, but lacks a cookie consent mechanism. The absence of WHOIS data for the domain is a notable concern, potentially indicating registration or privacy issues, but the active and consistent web presence mitigates some trust concerns. Overall, the site demonstrates a solid digital maturity with room for improvement in security transparency and privacy practices.

N

NetDirect

shopcentrik.cz

69

NetDirect is a Czech Republic-based technology company specializing in custom e-commerce solutions, with over 23 years of experience. The company has established itself as a leader in the Czech market, having developed major e-shops such as Alza.cz and Notino.cz. Their business model focuses on B2B services including custom e-shop development, B2B portals, IT outsourcing, and online marketing. The website reflects a mature digital presence with professional design and clear service offerings. Technically, the website leverages modern web technologies including Angular framework, Google Fonts, Google Tag Manager, and Facebook SDK. The site is mobile optimized and performs moderately well, though accessibility features could be improved. Security posture is generally good with HTTPS enforced and secure form implementations, but lacks some security headers and explicit security policies. From a security perspective, the absence of WHOIS data and lack of explicit privacy and security policies are notable gaps. The site uses multiple third-party analytics and marketing tools, indicating moderate user tracking. Cookie consent mechanisms are implemented, supporting GDPR compliance to some extent. Overall, the site is trustworthy but would benefit from enhanced transparency and security disclosures. Strategic recommendations include implementing comprehensive privacy and security policies, adding security headers, publishing incident response contacts, and improving accessibility. These steps will enhance trust, compliance, and security posture, supporting NetDirect's market leadership and digital maturity.

Tržiště Luxury Group operates a specialized e-commerce platform offering luxury gift vouchers and items associated with high-end hotels and restaurants in Prague. Their market niche focuses on affluent customers seeking premium hospitality experiences, including vouchers for CODA Restaurant, Terasa U Zlaté Studně, Aria Hotel Prague, and Golden Well Hotel. The website is professionally designed, bilingual (Czech and English), and provides a seamless shopping experience for luxury hospitality gifts. Technically, the site is built on the Shoptet e-commerce platform, utilizing jQuery and Facebook SDK, with HTTPS enforced and standard security measures like CSRF tokens and cookie consent mechanisms. However, the use of an outdated jQuery version and lack of advanced security headers indicate room for improvement. The absence of WHOIS registration data raises concerns about domain transparency, although the website content and partner links suggest legitimate business operations. Privacy compliance is addressed with a visible privacy policy and cookie consent banner, but no explicit contact information or security policies are provided. Overall, the site presents a moderate security posture with good business credibility but would benefit from enhanced transparency and security practices.

H

HR organizer

hrorganizer.be

69

HR organizer is a Belgian technology company specializing in SaaS-based applicant tracking system (ATS) and employer branding solutions tailored for HR professionals and recruiters in Belgium. Their platform supports the entire recruitment lifecycle from job posting to onboarding, integrating with major job boards and social media channels. The company positions itself as a leading ATS provider trusted by Belgian enterprises, emphasizing productivity and seamless recruitment workflows. Technically, the website employs modern web technologies including Bootstrap, Font Awesome, Google Fonts, and Facebook SDK for social integration. The site is mobile-optimized, SEO-friendly, and includes structured data for enhanced search engine understanding. Cookie consent mechanisms are robust, supporting GDPR compliance with multiple cookie categories and user preferences. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks visible security headers such as CSP or HSTS. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is unavailable due to registry restrictions, which slightly impacts trust but is mitigated by the professional site and GDPR compliance. Overall, HR organizer presents a mature digital presence with strong business credibility and privacy compliance. The main risk lies in the lack of WHOIS transparency and missing explicit security policy disclosures. Strategic improvements in security headers and incident response documentation would enhance trust and security posture.

K

Kartografie.cz

kartografie.cz

58

Kartografie.cz is a well-established Czech map publisher with over 70 years of experience producing educational and thematic maps, atlases, and custom cartographic products. Their business model combines e-commerce retail with bespoke map creation services targeting schools, travelers, and map enthusiasts. The website is built on the Shoptet e-commerce platform, leveraging modern analytics and marketing tools with a clear cookie consent mechanism, reflecting a mature digital presence. Security posture is generally good with HTTPS and CSRF protections, though improvements in security headers and library updates are recommended. The absence of WHOIS data reduces domain trustworthiness, but the professional website content and contact information support legitimacy. Overall, the site presents a solid business with room for technical and security enhancements.

C

Content Marketing Institute

contentmarketinginstitute.com

66

Content Marketing Institute (CMI) is a well-established organization focused on advancing the practice of content marketing through online education, in-person and digital events, strategic consultation, training, and research. The website positions itself as a leading global brand in content marketing education, targeting marketers and creators from enterprise brands, small businesses, and agencies. The business model revolves around providing educational content and events to a large community of content marketers worldwide. Technically, the website employs a modern technology stack including JavaScript frameworks, New Relic monitoring, OneTrust for cookie consent, Google Tag Manager, and various analytics and advertising tools. The site is hosted on a content delivery network (Contentstack) and demonstrates good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and has domain registration protections in place, but lacks DNSSEC and some recommended security headers. There is no publicly available security policy or incident response information, and no vulnerability disclosure mechanism is evident. Cookie consent is managed effectively via OneTrust, indicating some level of privacy compliance, though no explicit privacy policy or terms of service were found in the provided content. Overall, the website is professional, trustworthy, and well-positioned in its market niche. However, improvements in privacy documentation, security header implementation, and transparency around incident response would enhance its security posture and compliance standing.

S

Stylebot

stylebot.app

62

Stylebot is a technology company specializing in providing writing style and editing guidance through a SaaS platform targeted at enterprises, media organizations, and educational institutions. The website presents a professional and content-rich interface, showcasing client logos, testimonials, and awards that position Stylebot as a trusted solution in its niche. The business model revolves around subscription services with free trials and demos to attract customers. Technically, the site is built on WordPress with modern plugins and integrations such as Yoast SEO, Google Analytics, and LinkedIn Insight Tag, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no exposed sensitive data, though explicit security headers and a vulnerability disclosure policy are absent. Privacy compliance is partial, with a comprehensive privacy policy present but lacking a cookie consent mechanism despite tracking scripts. Overall, the site scores well on business credibility and technical implementation, with minor recommendations to enhance security and privacy transparency.

U

UAB "Interneto vizija"

donato.lt

35

Donato.lt is a Lithuanian small business specializing in internet page creation, maintenance, individual programming, and online advertising services. The company targets local Lithuanian businesses and individuals seeking web development and digital marketing solutions. The website presents a clear service offering with a focus on custom design, SEO, and social media integration. Technically, the site uses standard JavaScript libraries including Facebook SDK and Google APIs, with Google Analytics for user tracking. The site is accessible, uses HTTPS, but lacks advanced security headers and privacy compliance mechanisms such as cookie consent or privacy policies. Contact information is limited to an obfuscated email address, with no phone or physical address provided. WHOIS data confirms the domain is registered to a Lithuanian company consistent with the website's claims, indicating legitimacy. Overall, the site is functional and professional but could improve in privacy compliance and security best practices.

S

StatykPats.lt

statykpats.lt

39

StatykPats.lt is a Lithuanian e-commerce retailer specializing in construction and finishing materials, tools, garden, leisure, and cleaning equipment. Established since 2006, it serves primarily the Lithuanian market with a broad product catalog and additional services such as trailer rental. The website demonstrates a consistent brand presence and clear contact information, supporting its medium-sized business profile. Technically, the site uses legacy JavaScript libraries like jQuery 1.11.3 alongside modern marketing tools such as Google Tag Manager and Facebook SDK, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate; HTTPS is used, but no security headers are detected and the use of outdated libraries poses potential risks. Privacy compliance is good with visible cookie consent and privacy policies aligned with GDPR. Overall, the site is trustworthy but would benefit from technical and security updates to enhance resilience and compliance.

U

UAB "DVIGUBAS AČIŪ"

dovanossiluteje.lt

41

UAB "DVIGUBAS AČIŪ" operates the website dovanossiluteje.lt, an e-commerce platform specializing in gift coupons and flower delivery services primarily targeting the Šilutė region in Lithuania. The business has been active since 2015 and positions itself as a regional leader in retail gift services, offering a variety of gift categories and convenient online purchasing options. The website is professionally designed with clear navigation and localized content tailored to its audience. Technically, the site employs a mix of established JavaScript libraries such as jQuery and Bootstrap, integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and Visual Website Optimizer, and uses HTTPS to secure communications. While the site demonstrates good privacy compliance with a cookie consent mechanism and a comprehensive privacy policy, it lacks explicit security policies and incident response information. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the absence of security headers and vulnerability disclosure mechanisms suggests room for improvement. Overall, the website is trustworthy and professionally maintained, with a moderate to good technical and security maturity level.

U

UAB DVIGUBAS AČIŪ

silutesskelbimai.lt

38

The website www.silutesskelbimai.lt operates as a local classifieds platform primarily serving the Šilutė region in Lithuania. It offers a free classifieds service with categories including real estate, transportation, services, and agriculture. The business model includes paid VIP ad placements and advertising space sales, positioning itself as the largest classifieds site in the Šilutė area. The company behind the site is UAB DVIGUBAS AČIŪ, with a clear focus on local community engagement and commerce facilitation. Technically, the site employs a modern but straightforward technology stack including jQuery, Google Analytics, Google Tag Manager, and Usercentrics for GDPR-compliant cookie consent management. The site is mobile optimized and uses HTTPS with no visible security warnings, indicating a secure baseline. However, no advanced security headers were detected, and no CMS or hosting provider information was found, suggesting a custom or lightly managed infrastructure. From a security perspective, the site demonstrates good practices such as encrypted connections and consent management but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of WHOIS data for the domain reduces trust and raises questions about domain registration transparency. No critical vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the site presents a functional and regionally focused classifieds platform with moderate technical maturity and privacy compliance. The main risk lies in the lack of WHOIS transparency and limited direct company contact information. Strategic improvements in security headers, incident response readiness, and clearer business contact details would enhance trust and security posture.

Š

Šilutės dziudo klubas „Kumikata“

kumikata.lt

36

Šilutės dziudo klubas „Kumikata“ is a local Lithuanian judo club focused on martial arts training and community engagement. The website presents the club's philosophy, history, and training opportunities, targeting local sports enthusiasts. Technically, the site uses legacy JavaScript libraries such as jQuery 1.11.3, Google Analytics, and Facebook SDK for tracking and social integration. The site is accessible over HTTPS and includes basic privacy and cookie consent mechanisms, but lacks advanced security headers and modern technical optimizations. The absence of WHOIS data limits domain legitimacy verification, though the website content and contact details appear consistent with a small local sports organization. Security posture is moderate but could be improved by updating libraries and adding security headers.

U

UAB BALTIC FROST

e-silumossiurbliai.lt

39

The website www.e-silumossiurbliai.lt represents UAB BALTIC FROST, a Lithuanian company specializing in the sale and installation of heat pumps and related heating equipment. The site targets homeowners and builders seeking energy-efficient heating solutions, offering a detailed product catalog and technical information primarily in Lithuanian. The business operates as a small-sized regional energy sector e-commerce and service provider with a focus on heat pump technologies. Technically, the website employs legacy jQuery 1.7.2, Google Tag Manager, and Facebook SDK for tracking and marketing purposes. The site is served over HTTPS with a valid SSL certificate and includes privacy and cookie policies with consent mechanisms, reflecting a moderate level of digital maturity. Security posture is adequate but could be improved by updating outdated libraries and implementing security headers. The absence of WHOIS data limits domain legitimacy verification, though the website content and contact details appear professional and trustworthy. Overall, the site scores well in content quality and user experience but has room for improvement in technical security and compliance documentation.

U

UAB Baltic Frost

balticfrost.lt

38

UAB Baltic Frost is a small Lithuanian company specializing in heating, air conditioning, refrigeration, and ventilation system installation and maintenance primarily in the Klaipėda region. With 15 years of experience, the company offers services including heat pump installation, air conditioner installation, technical maintenance, consulting, and thermographic imaging. The website reflects a regional service provider with a clear focus on HVAC solutions. Technically, the site uses legacy jQuery, Google Analytics, Facebook SDK, and Google Maps API, though the map integration is currently broken due to API key issues. Security posture is moderate with HTTPS usage but lacks modern security headers and uses outdated libraries. Privacy and cookie policies are present and GDPR compliant. Contact information is clearly provided, enhancing business credibility. WHOIS data is unavailable due to query limits, limiting domain registration trust verification. Overall, the site is functional and professional but would benefit from technical and security updates.

O

Опознай.bg - Пътеводителят на България

opoznai.bg

52

Опознай.bg is a Bulgarian-language online travel guide and directory focused on providing comprehensive information about natural and cultural landmarks, events, travel ideas, offers, and accommodations within Bulgaria. The platform targets Bulgarian-speaking travelers and tourists interested in exploring Bulgaria's diverse attractions. It holds a strong market position as a detailed national travel resource with thousands of listings across multiple categories. Technically, the website employs a mix of legacy and modern technologies including jQuery 1.11.3, Firebase messaging, Google Analytics with IP anonymization, and Facebook SDK integrations. The site is hosted with assets served from imgrabo.com and uses HTTPS throughout, indicating a secure transport layer. Security posture is moderate with good practices like CSRF token usage and anonymized analytics, but lacks explicit security headers and uses an outdated jQuery version, which could pose risks. Privacy compliance is basic; no explicit privacy or cookie policies were found, though cookie consent mechanisms appear implemented. Business credibility is supported by professional design, consistent branding, and integration with major social platforms, but absence of contact details and policies reduces trust. Overall, the site is functional and content-rich but would benefit from enhanced security and privacy transparency.

D

Kilimai, Grindų Dangos, Parketas ir kitos Interjero Detalės - Dubingiai

dubingiai.lt

52

Dubingiai.lt is a Lithuanian e-commerce retailer specializing in floor coverings such as carpets, parquet, and other interior accessories. The website targets homeowners and office clients within Lithuania, offering a broad selection of interior finishing materials. The business operates on the PrestaShop platform, leveraging modern web technologies including jQuery, Bootstrap, and various marketing and analytics tools. The site is well-structured, mobile-optimized, and employs HTTPS with a good SSL configuration, reflecting a moderate level of digital maturity. Security measures include the use of Google reCAPTCHA and a cookie consent mechanism, although explicit privacy policies and contact information are not readily visible, indicating room for improvement in compliance and transparency. Overall, the website presents a professional retail presence with moderate trustworthiness but would benefit from enhanced privacy disclosures and clearer contact channels.

Š

Šilutės reklama

silutesreklama.lt

40

Šilutės reklama is a small Lithuanian web development agency specializing in creating websites, e-commerce platforms, and providing online advertising and programming services. With over 10 years of experience and a portfolio exceeding 250 websites, the company targets local businesses and individuals seeking professional digital presence solutions. Their offerings include website audits, SEO optimization, and social media administration, positioning them as a comprehensive digital service provider in their regional market. Technically, the website employs a traditional tech stack including HTML, CSS, PHP, jQuery, and Bootstrap, with integration of Facebook SDK and Google Analytics for marketing and tracking purposes. While the site is functional and professionally designed, it uses somewhat outdated libraries and lacks modern security headers and privacy policies, which could impact compliance and security posture. The security posture is moderate with HTTPS usage but missing advanced headers and updated libraries. Overall, the website is accessible and trustworthy but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include updating technology stack, implementing security headers, and publishing privacy and cookie policies to improve user trust and regulatory compliance.

B

BoilieRoller - Bait making equipment

boilieroller.com

46

BoilieRoller.com is an e-commerce website specializing in bait making equipment and accessories targeted at fishing enthusiasts. The site positions itself as a niche supplier with a focus on quality bait making tools. The website is functional with basic content and navigation, supported by social media channels on Facebook, YouTube, and Twitter. However, the lack of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Technically, the site uses older versions of jQuery and Bootstrap frameworks, with Google Tag Manager and Facebook SDK for analytics and marketing. Security posture is moderate but could be improved by adding security headers and updating libraries. Privacy compliance is addressed with a cookie consent banner and a basic privacy policy, indicating GDPR awareness. Overall, the site is operational but requires improvements in security, transparency, and technical modernization to enhance trust and user experience.

U

UAB Viltana

radilux.lt

40

RADILUX, operated by UAB Viltana, is a Lithuanian small business specializing in the manufacture and retail of window coverings including roller blinds, blinds, mosquito nets, Roman blinds, and room dividers. The company targets customers primarily in the Žemaitija region, offering a wide range of over 450 fabric options and emphasizing quality materials and fast production and installation times. The website reflects a local retail business with clear contact information and a presence on Facebook, supporting customer engagement and marketing efforts. Technically, the website employs legacy technologies such as jQuery 1.7.2 alongside modern analytics and marketing tools including Google Analytics, Google Tag Manager, and Facebook SDK. While the site is accessible and functional with basic mobile optimization and SEO, there is room for modernization and improvement in performance and accessibility standards. The presence of multiple tracking scripts indicates moderate user tracking, balanced by a visible cookie consent mechanism and privacy policy aligned with GDPR requirements. From a security perspective, the site uses HTTPS but lacks visible HTTP security headers and employs an outdated JavaScript library version, which could expose it to vulnerabilities. No explicit security or incident response policies are published, and WHOIS data is unavailable due to query limits, though no suspicious indicators are present. Overall, the security posture is moderate but could benefit from enhancements to protect user data and improve trust. The overall risk assessment suggests a legitimate small business with a functional online presence but with technical and security improvements recommended to enhance resilience, compliance, and user trust. Strategic recommendations include updating legacy libraries, implementing security headers, publishing security policies, and improving mobile and accessibility features.

Г

Грабо Медия АД

grabo.bg

53

Grabo.bg is a leading Bulgarian e-commerce platform specializing in promotional deals across various sectors including shopping, dining, entertainment, beauty, hotels, vacations, and excursions. The platform targets Bulgarian consumers primarily in Sofia and other major cities, offering discounts up to 70%. The business model revolves around aggregating and selling time-limited deals from various service providers and merchants. The website is well-branded, professionally designed, and offers mobile applications for Android, iPhone, and Huawei devices, enhancing accessibility and user engagement. Technically, Grabo.bg employs a modern technology stack including jQuery, Firebase Messaging, Google Analytics, Google Tag Manager, Facebook SDK, Microsoft Clarity, and Klaviyo for marketing automation. The site is served over HTTPS with strong security headers, ensuring secure data transmission. The platform integrates social login options and uses extensive tracking and advertising networks to optimize marketing efforts. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site demonstrates good practices such as anonymizing IP addresses in analytics and enforcing secure cookies. However, it lacks explicit cookie consent mechanisms and does not publish a dedicated security policy or incident response contacts. There is no vulnerability disclosure or security.txt file, which are recommended for transparency and security maturity. No critical vulnerabilities or exposed sensitive data were detected. Overall, Grabo.bg presents a trustworthy and professional online presence with a strong market position in Bulgaria. To enhance compliance and security posture, the company should implement explicit cookie consent, publish security policies, and establish vulnerability disclosure channels. These steps will improve user trust and regulatory compliance, supporting sustainable growth and risk management.

B

BĮ Klaipėdos miesto globos namai

kgnamai.lt

46

BĮ Klaipėdos miesto globos namai is a Lithuanian municipal social care institution focused on providing services to elderly individuals and the local community. The organization is actively involved in EU-funded projects such as the Interreg VI-A Latvia-Lithuania Programme, demonstrating engagement in regional cooperation and social welfare initiatives. The website serves as an information portal offering news, contact details, service descriptions, and community engagement opportunities. Technically, the website is built on WordPress with a modern theme and uses common web technologies including jQuery, Google Analytics, Facebook SDK, and Leaflet.js for interactive maps. The site is mobile-optimized, accessible, and implements GDPR-compliant cookie consent mechanisms. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and uses cookie consent to comply with privacy regulations. However, it lacks explicit security headers and dedicated security or incident response policies on the site. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is unavailable due to query limits, but the domain appears legitimate and consistent with a public institution. Overall, the website presents a trustworthy and professional digital presence for a government social care entity. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security posture and compliance maturity.

Epas.lt is a Lithuanian digital services provider specializing in website creation, mobile application development, advertising services, graphic design, SEO optimization, and hosting. The website presents a basic but functional online presence targeting businesses or individuals seeking digital solutions. The market position appears local and small-scale with no explicit information on company size or history. The technical infrastructure includes integration with Google Analytics and Facebook Pixel for marketing and tracking purposes, but lacks advanced security headers and privacy policies. The website is accessible without any WAF or blocking mechanisms, but the absence of WHOIS data limits the ability to fully verify domain legitimacy. Security posture is moderate with room for improvement in privacy compliance and security best practices.

A

Asian Association for Investors in Non-Listed Real Estate Vehicles (ANREV)

anrev.org

61

ANREV is a well-established not-for-profit organization serving as a leading platform for investors in the Asia Pacific non-listed real estate sector. It provides comprehensive research, market data, standards, and events to support transparency and best practices in the industry. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to institutional investors and real estate professionals. Technically, the site employs modern analytics and tracking tools, including Google Analytics, Google Tag Manager, and Facebook SDK, while maintaining good privacy compliance with cookie consent and a detailed privacy policy. Security posture is solid with HTTPS enforced and secure login mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data limits domain registration trust analysis, but the overall professionalism and strategic partnerships support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and improving accessibility features.

J

Jeruzalės bendruomenės centras

jeruzalesbendruomene.lt

41

Jeruzalės bendruomenės centras is a local community center serving the Jeruzalė neighborhood and adjacent microdistricts in Vilnius, Lithuania. The organization focuses on community engagement, project implementation, and providing information and support to local residents. The website reflects a small non-profit entity with clear contact details, social media presence, and community-oriented content. Technically, the site is built on WordPress using modern plugins and libraries, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and privacy policies are lacking. The absence of WHOIS data limits domain trust analysis but the site content and contact information appear legitimate.

S

Stolitsa Group

stolitsagroup.com

58

Stolitsa Group is a well-established Ukrainian real estate developer specializing in residential and commercial projects primarily in Kyiv. Founded in 2003, the company has built a strong market presence with over 136 buildings completed and a reputation for quality and reliability. Their business model focuses on property development and sales, targeting local buyers and investors. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs a modern tech stack including jQuery, Swiper, Google Maps API, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and SendPulse. Hosting and DNS are managed via Cloudflare, enhancing performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, it lacks visible security headers and does not provide explicit privacy or cookie policies, which are critical for GDPR compliance. There is no published incident response or vulnerability disclosure information. The use of multiple third-party tracking scripts indicates extensive user tracking, which may raise privacy concerns. Overall, Stolitsa Group's website is professional and credible but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.

U

UAB Valdantis

valdantis.lt

51

UAB Valdantis operates as a specialized property management company focused on long-term residential rental administration in Lithuania. The company offers comprehensive services including tenant search, rent and utility collection, property maintenance coordination, and tenant communication management. With over nine years of experience and a portfolio of more than 200 managed apartments, Valdantis positions itself as a reliable partner for property owners seeking passive rental income without the associated management burdens. The website content is professionally presented, targeting property owners in Lithuania, and includes client testimonials that reinforce trust and service quality. Technically, the website employs a modern technology stack including jQuery, Swiper.js for UI components, FontAwesome for icons, Google reCAPTCHA for form security, Facebook SDK for social integration, and Google Tag Manager for analytics and marketing management. The site is served over HTTPS with good SSL configuration, includes cookie consent mechanisms compliant with GDPR, and integrates tracking pixels for marketing and analytics purposes. Mobile optimization and SEO practices are adequately implemented, providing a good user experience across devices. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms from spam. However, it lacks advanced security headers such as Content-Security-Policy and HSTS, which are recommended to enhance security posture. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy and cookie policies are present and indicate GDPR compliance, but explicit security policies and incident response contacts are not found, which could be improved to enhance transparency and readiness. Overall, the website presents a trustworthy and professional front for the business, with solid technical implementation and privacy compliance. The absence of WHOIS data due to query limits slightly reduces domain trust assessment confidence but does not detract significantly from the business credibility evidenced on the site. Strategic improvements in security headers and explicit security documentation are recommended to further strengthen the security posture and trustworthiness.

U

UAB BONDO JOBS

bondojobs.lt

53

Bondo Jobs is a Lithuanian recruitment agency specializing in providing job opportunities abroad, primarily in Germany, the Netherlands, Belgium, Finland, and Sweden. Established in 2021, the company offers direct employment contracts and accommodation arrangements, targeting Lithuanian job seekers including individuals and couples. The website presents a professional and user-friendly interface with detailed job listings, customer testimonials, and clear contact information, supporting its market position as a trusted regional employment service provider. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper, and Select2, integrates Google Analytics and Facebook SDK for tracking, and enforces HTTPS with Google ReCaptcha for form security. However, it lacks some security headers and explicit security or incident response policies.

F

Titulinis - Feminabona24.com

feminabona24.com

61

Feminabona24.com is a Lithuanian e-commerce website specializing in beauty and personal care products, including hair care, face care, body care, and aromatherapy cosmetics. The site offers a well-structured catalog targeting consumers interested in grooming and wellness products. Technically, the website employs modern JavaScript libraries such as Swiper.js for carousels, integrates Facebook Customer Chat, Google reCAPTCHA for bot protection, and uses New Relic Browser for performance monitoring. The site is hosted via Hostex and uses HTTPS, ensuring secure communication. However, the absence of privacy and cookie policies, minimal security headers, and lack of DNSSEC indicate areas for security and compliance improvement. Overall, the website presents a professional and functional e-commerce platform with moderate security posture and room for enhanced privacy compliance.

U

UAB „Meistro pasaulis"

meistropasaulis.lt

50

Meistro Pasaulis is a Lithuanian-based small retail company specializing in professional hair care cosmetics. The website serves as an e-commerce platform offering a variety of branded hair care products, targeting both individual consumers and beauty professionals. The company positions itself as an official representative of several high-quality hair care brands in Lithuania, providing original products with free delivery for orders over 30 EUR. The site includes a beauty magazine section to engage customers and enhance brand loyalty. Technically, the website employs a custom CMS with modern JavaScript libraries such as jQuery, Swiper.js, and Select2, alongside Google Tag Manager, Google Analytics, and Facebook Pixel for marketing and analytics. The site is mobile-optimized with good SEO practices and includes cookie consent mechanisms compliant with GDPR. However, no explicit security headers were detected, and WHOIS data is unavailable due to query limits, which slightly impacts trustworthiness. From a security perspective, the site uses HTTPS and Google ReCaptcha to protect forms from spam. Privacy and cookie policies are present and accessible, indicating a good level of privacy compliance. No critical vulnerabilities or exposed sensitive data were found. The absence of incident response contacts and security policy pages suggests room for improvement in security transparency. Overall, the website presents a professional and trustworthy front for a niche retail business. Strategic improvements in security headers, WHOIS transparency, and incident response information would enhance the security posture and trustworthiness further.

M

Mokytoja Veronika

mokytojaveronika.lt

50

Mokytoja Veronika is a Lithuanian small business focused on providing educational materials and resources, including reading flashcards and school supplies, through an e-commerce platform. The website also features a blog and personal branding content about the teacher Veronika, targeting parents, teachers, and students. The business model combines direct product sales with educational content delivery, positioning itself as a niche provider in the education sector within Lithuania. Technically, the website employs a modern JavaScript stack including jQuery, Fancybox, Swiper, and Google Tag Manager, ensuring a responsive and user-friendly experience. The site is well-optimized for mobile devices and includes basic accessibility features. SEO practices are adequately implemented with proper meta tags and Open Graph data. Hosting details are not explicitly identified, but the site uses HTTPS with a valid SSL certificate. From a security perspective, the site enforces HTTPS and uses Google ReCaptcha on forms to mitigate spam. Cookie consent mechanisms are implemented in compliance with GDPR, and privacy policies are clearly presented. However, the absence of explicit security headers and incident response information indicates room for improvement in security posture. No vulnerabilities or suspicious activities were detected in the visible content. Overall, the website presents a trustworthy and professional front for a small educational business. The lack of WHOIS data due to query limits and privacy protection is typical for small businesses and does not detract from legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining up-to-date third-party libraries to strengthen security and compliance.

S

SUBAN d.o.o.

silux.de

55

SILUX.DE is an established e-commerce platform specializing in automotive spare parts, targeting primarily the German market with regional presence in Slovenia and neighboring countries. The company offers a vast catalog of over 130,000 parts including lamps, mirrors, body components, cooling systems, and engine parts, supported by a 365-day return policy, positioning itself as a price-competitive retailer in the automotive aftermarket sector. The website is professionally designed with clear navigation and a mobile-optimized interface, facilitating a positive user experience for automotive parts buyers. Technically, the site employs a modern technology stack including jQuery, Google Tag Manager, Google Analytics, Facebook SDK, Stripe for payments, and Klaro for cookie consent management. While the site uses HTTPS and some security best practices, there is room for improvement in security headers and explicit privacy policy publication. The site integrates multiple marketing and tracking tools, reflecting a moderate level of user tracking consistent with e-commerce standards. From a security perspective, the site demonstrates a good baseline with HTTPS and secure form handling but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected in the provided content. WHOIS data aligns with the business identity, showing consistent registration details and no privacy protection, supporting domain legitimacy. Overall, SILUX.DE presents a trustworthy and functional e-commerce platform with moderate technical maturity and security posture. Strategic enhancements in privacy compliance documentation, security headers, and incident response transparency would further strengthen its risk profile and customer trust.

N

Nexdigm

skpgroup.com

77

Nexdigm is a professional services group based in India specializing in business setup, transaction support, finance and accounting outsourcing, regulatory compliance, tax advisory, transfer pricing, assurance, and corporate services. The company targets international businesses operating or expanding in India and overseas, positioning itself as a leading consulting and outsourcing partner. The website reflects a mature digital presence with comprehensive service descriptions and professional branding. Technically, the website is built on WordPress with modern JavaScript libraries and frameworks such as jQuery and Bootstrap. It integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, Facebook Pixel, and LinkedIn Insight Tag, alongside a robust consent management platform (OneTrust) and security measures like hCaptcha and HTTPS enforcement. The site demonstrates good mobile optimization and SEO practices. From a security perspective, the site employs strong HTTPS configuration and security headers, uses CAPTCHA to protect forms, and manages cookie consent effectively. However, it lacks a publicly visible security policy or incident response information, which could be improved to enhance trust. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional and secure, but the absence of WHOIS domain registration data raises questions about domain legitimacy. This discrepancy should be investigated further to ensure full trustworthiness. Strategic recommendations include publishing a security policy, adding vulnerability disclosure information, and enhancing accessibility features.

BS Chemical is a Lithuanian-based company specializing in the production and supply of professional detergents and ethanol-based disinfectants primarily serving the food industry, agro, and hospitality sectors. The company positions itself as a provider of customer-focused hygienic solutions and operates a professional, content-rich website that supports multiple languages. Their market presence is supported by ISO certification and active social media engagement on Facebook and LinkedIn. Technically, the website is built on WordPress with modern plugins and tracking tools, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and secure login forms, but lacks comprehensive security headers and vulnerability disclosure mechanisms. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service pages. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy despite the professional online presence. Overall, the website is functional and professional but would benefit from enhanced security and compliance transparency.

S

SKYTECH.LT

skytech.lt

64

SKYTECH.LT is a Lithuanian retail e-commerce company specializing in digital technology products including laptops, desktop computers, tablets, televisions, home electronics, household appliances, and office equipment. The website targets Lithuanian consumers and positions itself as a local electronics retailer with a medium-sized business profile. The site features a professional design with good content relevance and clear navigation, optimized for mobile devices. The company demonstrates digital maturity through the use of multiple analytics and marketing technologies such as Google Tag Manager, Facebook SDK, Hotjar, and Cookiebot for privacy compliance. Security posture is moderate with basic security headers and cookie consent mechanisms in place, but lacks visible advanced security policies or incident response information. WHOIS data is unavailable due to query limits, but no suspicious indicators are present on the site, and trust signals such as Google and Microsoft site verifications support legitimacy. Overall, the website is professional, privacy compliant, and well-positioned in its market segment.

J

JSC "Tanagra"

tanagra.lt

41

JSC Tanagra is a Lithuanian company specializing in the supply and distribution of automotive spare parts and related services, including a network of workshops and technical assistance on the road. The company targets automotive service centers, spare parts stores, wholesale buyers, and end customers. Their business model combines wholesale and retail sales with an online order management system to streamline parts procurement. The website reflects a medium-sized enterprise with a consistent brand presence and established supplier partnerships. Technically, the site is built on Joomla CMS, uses common analytics and social media integrations, and enforces HTTPS for secure communications. However, it lacks some modern security headers and comprehensive privacy documentation. The security posture is moderate with room for improvement in policy transparency and technical safeguards. Overall, the website is professional and trustworthy, though WHOIS data unavailability limits full domain legitimacy verification.

T

TZMO SA

tzmo-global.com

45

TZMO SA is a well-established Polish company specializing in the production and global distribution of hygiene, cosmetic, and medical products. With a presence in over 80 countries, the company positions itself as a leading manufacturer in its sector, targeting a broad international audience. The website reflects a professional corporate identity with consistent branding and a clear business focus on healthcare and manufacturing sectors. Technically, the site employs a mix of legacy and modern web technologies, including jQuery and Swiper.js, hosted on Google Cloud infrastructure, offering moderate performance and good mobile optimization. Security posture is adequate but could be improved by enabling DNSSEC, updating libraries, and adding security headers. Privacy compliance is well addressed with a detailed cookie policy and consent mechanism, though explicit privacy policy content is basic. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

Talent Lab is a Lithuanian recruitment and consulting firm specializing in connecting talented professionals with employers across IT, finance, telecommunications, manufacturing, and e-commerce sectors. The company emphasizes personalized service, rapid and efficient talent acquisition, and leadership recruitment. Their website reflects a professional and consistent brand image, showcasing client success stories and a dedicated team. Technically, the site is built on WordPress with modern plugins and frameworks, supporting responsive design and user-friendly navigation. Security measures include HTTPS and reCAPTCHA integration, though some security headers and cookie consent mechanisms are missing. The absence of WHOIS data limits full trust verification, but the business presence and contact information support legitimacy.

E

Eddy Travels

eddytravels.com

65

Eddy Travels is a Lithuania-based AI travel assistant startup that leverages machine learning to provide users with quick access to the best travel deals including flights, hotels, and car rentals. The company is positioned as an innovative player in the travel technology sector, supported by its participation in the Techstars Toronto 2019 accelerator program. The website is professionally designed using Squarespace CMS, featuring clear navigation, mobile optimization, and integration with popular chat platforms such as Facebook Messenger, Viber, and Telegram. The business model focuses on delivering AI-powered travel assistance through chatbots, targeting tech-savvy travelers seeking convenience and speed in travel planning. Technically, the website employs modern web technologies including Google Tag Manager, Facebook SDK, Hotjar analytics, and cookie consent management via Cookie-Script. The site is secured with HTTPS and HSTS, demonstrating a strong baseline security posture. However, additional security headers could be implemented to further harden the site. Privacy compliance is addressed with a visible cookie banner and a dedicated privacy policy page, indicating awareness of GDPR requirements. Security-wise, no critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a notable anomaly that requires further verification to confirm domain ownership legitimacy. Despite this, the presence of trust indicators such as Techstars backing and active social media channels supports the business credibility. Overall, the website presents a secure, compliant, and user-friendly platform for AI-driven travel assistance. Strategically, Eddy Travels should consider publishing explicit security policies and incident response procedures to enhance trust and compliance. Strengthening security headers and establishing a vulnerability disclosure program would further improve the security posture. Continuous monitoring of third-party scripts and maintaining transparency in data protection practices will be essential as the business scales.

Y

Yamatecha

yamatecha.lt

42

Yamatecha.lt is the official Yamaha motor representative in Lithuania, offering a broad range of Yamaha motorcycles, scooters, electric bikes, watercraft, and related accessories. The website serves as a retail and service platform targeting motorcycle enthusiasts and customers within Lithuania. The business model focuses on direct sales, servicing, and parts catalog access, positioning Yamatecha as a key player in the Lithuanian powersports market. Technically, the website is built on the PrestaShop CMS platform, integrating modern web technologies such as jQuery, FontAwesome, and APIs from YouTube and Vimeo for multimedia content. Analytics and marketing tools like Google Analytics, Google Tag Manager, and Facebook SDK are actively used, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of security headers and dedicated security or incident response policies suggests room for improvement. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the site presents a professional and functional e-commerce experience with moderate risk and compliance gaps.

Tęstinių Mokymų Centras is a Lithuanian-based education company specializing in continuous training and professional consulting services for businesses and individuals. Established in 2008, it positions itself as the first continuous training company in Lithuania, offering tailored solutions based on detailed needs analysis. The website reflects a professional and consistent brand image, targeting Lithuanian enterprises and individuals seeking training services. Technically, the site is built on WordPress with Visual Composer, leveraging common marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, alongside a cookie consent banner indicating GDPR compliance awareness. However, explicit security policies and incident response information are not publicly available, and WHOIS data is inaccessible due to query limits, limiting domain transparency. Overall, the website demonstrates moderate technical maturity and business credibility with room for improvement in security transparency and WHOIS data availability.

F

Frogmind

frogmindgames.com

50

Frogmind is an independent game development studio based in Helsinki, Finland, recognized for its award-winning BADLAND series and other successful mobile games. Operating since 2012, Frogmind maintains a strong market position through a strategic partnership with Supercell, which holds a majority stake. The company focuses on small, talented teams to deliver high-quality gaming experiences across multiple platforms. Technically, the website is built on WordPress with common web technologies such as jQuery and Bootstrap, and integrates analytics and social media SDKs. The site is accessible, well-structured, and mobile-optimized, though some security enhancements could be made. Security posture is solid with HTTPS and domain protections, but lacks DNSSEC and advanced security headers. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the website reflects a professional and credible business with room for security and privacy improvements.