Security Directory

ا

الاتحاد الدولي للصحفيين

ifj-arabic.org

42

The International Federation of Journalists Arabic site (الاتحاد الدولي للصحفيين) serves as a regional platform for news, campaigns, and programs supporting journalists in the Arab world and Middle East. It operates as a non-profit media organization with a focus on press freedom, journalist safety, and professional ethics. The website is built on TYPO3 CMS and integrates modern web technologies to deliver content primarily in Arabic with links to other language variants. The site demonstrates a good level of content quality, user experience, and mobile optimization, targeting journalists and media professionals in the region. Technically, the site uses a mature CMS platform with several JavaScript libraries for enhanced UI and social media integration. Performance is moderate with good SEO practices but lacks some advanced accessibility features. Security posture is solid with HTTPS enforced, but the absence of security headers and vulnerability disclosure policies indicates room for improvement. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced transparency around privacy, security policies, and domain registration data. The lack of WHOIS information slightly reduces domain trustworthiness but does not detract significantly from the site's legitimacy given its clear organizational identity and contact information.

F

FICSA

ficsa.org

49

FICSA is a well-established federation representing international civil servants, advocating for their rights and working conditions within interagency bodies and legislative organs of the common system. The organization operates primarily as a non-profit entity based in Switzerland, with a global membership and over 70 years of history. Their key services include advocacy, training, webinars, publications, and organizing meetings and councils. The website reflects a professional and consistent brand image with clear navigation and relevant content targeted at international civil servants and related stakeholders. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery, Slick Carousel, and Select2. It uses Google Fonts and integrates social media SDKs for Facebook and Twitter, alongside AddThis for sharing. The site is mobile-optimized with good SEO and accessibility basics, though there is room for improvement in accessibility compliance. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, DNSSEC is not enabled, and there is no visible security policy or incident response information. The site includes a cookie consent mechanism and privacy policy, indicating basic GDPR compliance. No critical vulnerabilities or suspicious domains were found. WHOIS data confirms the domain's legitimacy and long-standing registration consistent with the organization's profile. Overall, the website presents a trustworthy and credible digital presence with good content quality and technical implementation. Strategic recommendations include enabling DNSSEC, publishing a security policy and incident response contacts, and enhancing accessibility features to improve compliance and user experience.

E

Effical Ingénierie

effical.fr

49

Effical Ingénierie is a French company specializing in climate engineering, focusing on high-efficiency heating systems, thermal exchange substations, and turnkey thermal modules for sustainable development. Their website presents a professional and content-rich platform targeting businesses and organizations in the energy sector requiring advanced heating and thermal solutions. The company emphasizes energy efficiency and sustainable development in its offerings. Technically, the website is built on the SPIP CMS platform and uses common web technologies such as jQuery and Google Analytics. The site is accessible, with a moderate performance profile and basic mobile optimization. However, it lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. From a security perspective, the site uses HTTPS, which is positive, but the absence of WHOIS data and security headers reduces trustworthiness. No direct contact emails or phone numbers are visible, only a contact form, which may limit direct communication. The use of Google Analytics indicates moderate user tracking without clear privacy disclosures. Overall, the website is functional and professional but would benefit from improved transparency in domain registration, enhanced security practices, and stronger privacy compliance measures to increase trust and reduce risk.

W

Wannitube

wannitube.fr

53

Wannitube is a French company specializing in turnkey solutions for pre-insulated piping networks and thermal exchange substations, positioning itself as a market leader in France with over 40 years of expertise. The website provides detailed information about their services, including engineering, subcontractor management, site coordination, and civil engineering, targeting businesses in the energy and urban heating/cooling sectors. The digital infrastructure is based on the SPIP CMS platform, utilizing jQuery and Google Analytics for analytics and interactivity. The website is accessible, uses HTTPS, and has a professional design, though mobile optimization and accessibility are basic. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response or vulnerability disclosure policies. Privacy compliance is partial, with a basic privacy policy present but no cookie consent mechanism or GDPR explicit statements. Contact information is limited to contact forms without direct emails or phone numbers, which may impact user trust and compliance. WHOIS data is unavailable, limiting domain legitimacy verification, though the website content and structure suggest a legitimate business presence.

I

INPAL Energie

inpal.com

58

INPAL Energie is a French company specializing in the manufacturing and engineering of pre-insulated steel pipes and accessories for district heating and cooling networks, as well as industrial applications. The company positions itself as a market leader in France with over 30 years of expertise and a significant installed base of piping. Their website reflects a professional business presence with detailed product and service information targeting urban heating and cooling network operators and industrial clients. Technically, the website is built on the SPIP CMS platform, utilizing jQuery and Google Analytics for tracking. The site is moderately optimized for performance and mobile use, with basic accessibility features. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks important security headers and visible privacy or cookie policies. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, despite the professional appearance of the website. Contact information is limited to a contact form without direct emails or phone numbers, and no social media presence is evident. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance, and clearer business contact details.

Ufip Énergies et Mobilités is a professional union representing approximately thirty companies involved in the petroleum and energy sectors in France. The organization focuses on supporting the energy transition by advocating for decarbonization and the development of low-carbon energies. Their website serves as an information hub for industry stakeholders and the public, providing press releases, studies, and strategic insights related to energy and mobility. The site is well-structured, mobile-optimized, and uses a modern technology stack including Bootstrap and jQuery libraries. Technically, the website employs a variety of JavaScript libraries and plugins to enhance user experience, including date pickers, sliders, and popup modals. Hosting is provided by monarobase.net, and the site uses HTTPS, although no advanced security headers were detected. The site lacks explicit privacy and cookie policies, which is a notable gap in compliance. Contact information is clearly presented, including phone, email, and physical address, enhancing business credibility. From a security perspective, the site shows basic good practices such as CSRF tokens in forms and no visible sensitive data exposure. However, the absence of security headers and vulnerability disclosure policies suggests room for improvement. The WHOIS data is unavailable, limiting domain trust assessment, but the professional presentation and content quality support legitimacy. Overall, the site scores well in content quality and business credibility but should improve privacy compliance and security posture.

A

ART SOFT

artsoft.lv

45

ART SOFT is a Latvian small technology company specializing in software and IT services. The website presents basic business information including contact details, company registration, and bank information, targeting business clients in need of IT solutions. The technical infrastructure includes modern web technologies such as Google Analytics, reCAPTCHA, and Google Maps API, although the map integration is currently non-functional due to API key or billing misconfiguration. Security measures include the use of reCAPTCHA on the contact form, but no advanced security headers or policies are evident. The absence of privacy and cookie policies indicates limited privacy compliance. Overall, the website is functional but basic in design and content quality, with moderate technical maturity and business credibility.

W

Web Bay

webbaysolutions.com

48

Web Bay is a specialized digital agency founded in 2012, focusing on providing web design, branding, digital transformation, and communication support services primarily to associations, non-profit organizations, and EU-funded projects. The company positions itself as a niche expert with a strong portfolio and client testimonials that emphasize reliability, remote collaboration, and continuous support. Their market presence is centered in Brussels and Belgrade, serving international clients with a tailored approach to digital challenges in the EU projects and NGO sectors. Technically, the website is built on TYPO3 CMS with a modern tech stack including jQuery and various UI libraries, delivering a professional and responsive user experience. Security posture is solid with HTTPS and domain protection statuses, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic, with a cookie consent mechanism present but lacking a formal privacy policy or terms of service. Overall, the website reflects a credible and professional digital agency with room for enhanced security and compliance documentation.

L

Latvijas Banka

e-monetas.lv

69

The website www.e-monetas.lv serves as the official e-commerce platform for Latvijas Banka, offering commemorative and collection coins to collectors and the general public. It positions itself as the authoritative source for Latvian coin collections, providing detailed product information, news updates, and purchasing capabilities. The site targets coin enthusiasts and investors interested in Latvian numismatics, operating under a retail e-commerce business model with a medium-sized organizational footprint. Technically, the site employs a modern JavaScript stack including jQuery, Bootstrap, Google reCAPTCHA v3, and various UI libraries such as Slick Carousel and Fancybox. The platform appears custom-built or uses a proprietary CMS, with moderate performance and good mobile optimization. SEO and accessibility are basic but functional. Security measures include HTTPS enforcement and bot protection via reCAPTCHA, though HTTP security headers are not explicitly detected. Security posture is solid with no critical vulnerabilities observed, but improvements are recommended in publishing security policies, incident response information, and security.txt files. Privacy compliance is basic with a clear privacy policy and cookie consent mechanism, but lacks detailed GDPR compliance disclosures. Business credibility is high due to official branding, clear contact information, and trust signals. Overall, the site is trustworthy and professionally maintained, though the absence of WHOIS data limits domain registration verification. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and continuous monitoring of third-party libraries for vulnerabilities.

J

Jānis Roze

janisroze.lv

66

Jānis Roze operates an e-commerce platform primarily targeting Latvian consumers, offering retail products through a Magento-based website. The site is professionally designed with good navigation and mobile optimization, leveraging modern web technologies and third-party monitoring tools such as New Relic and Facebook Pixel. Despite the lack of WHOIS data due to query limitations, the website's technical infrastructure and content suggest a legitimate business presence in the Latvian retail e-commerce market. However, the absence of explicit privacy, cookie, and terms of service policies, as well as contact information, indicates areas for compliance and trust improvement. Security posture is strong with HTTPS enforcement and monitoring, but could benefit from enhanced security headers and published incident response policies.

K

KARME FILTRS

karme.com

44

KARME FILTRS is an international group specializing in the development and production of technological water treatment equipment for both industrial and domestic applications. The company serves a diverse clientele including municipal and residential sectors, positioning itself as a medium-sized player in the energy-related water treatment industry with affiliated companies in Lithuania. The website content is basic but provides essential business descriptions and navigation in multiple languages. Technically, the site uses older technologies such as jQuery 1.6.2 and Flash fallback videos, indicating a need for modernization. Security posture is moderate with no HTTPS or security headers explicitly detected in the provided data, and no privacy or cookie policies are present, which impacts compliance and trust. The domain is well aged and registered with a reputable registrar, supporting business legitimacy. Overall, the site requires improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

Sri Murugan & Co is a medium-sized retail business based in Karur, India, specializing in sanitary ware, bathroom products, accessories, fittings, shower cabins, and ceramic tiles. Established in 1965, the company operates a large showroom and warehouse and represents over 29 international brands. The website reflects a business with a strong local market presence and a legacy of over 50 years. The content is relevant and professionally presented, targeting customers seeking quality bathroom products in the region. Technically, the website uses standard web technologies including Bootstrap, jQuery, and popular slider and animation libraries. The site is mobile responsive and has a moderate performance profile. However, it lacks advanced SEO and accessibility features and does not implement structured data or Open Graph metadata. The technical implementation is functional but could benefit from modernization and enhanced SEO practices. From a security perspective, the website uses HTTPS but lacks visible security headers such as Content Security Policy or HSTS. There is no privacy or cookie policy, and no incident response or vulnerability disclosure information is provided. Forms use POST methods but lack visible anti-CSRF protections. These gaps indicate a low to moderate security posture with room for significant improvement to meet modern compliance and security standards. Overall, the website is moderately trustworthy and professional but lacks critical privacy and security policies. Strategic improvements in security headers, privacy compliance, and incident response readiness are recommended to enhance trust and regulatory compliance.

AS Merktrans is an established Estonian logistics and transportation company founded in 1991. It offers a range of services including cargo forwarding, ship agency, and road transport, serving businesses involved in international trade. The company holds recognized certifications such as ISO 9001 and ISO 14001 and maintains memberships in reputable industry organizations, positioning itself as a trusted player in the Baltic transportation sector. The website is professionally designed with good content quality and clear navigation, supporting multiple languages to cater to its target audience. Technically, the site uses common web technologies like jQuery and Bootstrap, with moderate performance and good mobile optimization. However, there is no evidence of a CMS or advanced platform integrations. Security posture is moderate; while no critical vulnerabilities or exposed sensitive data were found, the absence of security headers and unclear SSL configuration are areas for improvement. Privacy compliance is weak due to missing privacy and cookie policies, which could pose regulatory risks. Overall, the website reflects a credible and professional business but would benefit from enhanced security and privacy measures.

K

Kaamos

kaamos.ee

53

Kaamos is a small Estonian business with an online presence established since 2010. The website is built on WordPress and uses common SEO and analytics tools such as Yoast SEO, Google Analytics, and Facebook Pixel. The company appears to have a basic digital maturity with good mobile optimization and SEO practices. However, explicit privacy and terms of service policies are not found in the analyzed content, which may affect compliance and user trust. The website implements a cookie consent mechanism via Cookiebot, indicating awareness of GDPR requirements. Security posture is solid with HTTPS and reCAPTCHA usage, but lacks visible security headers and formal security policies. Overall, the site is functional and professional but could improve transparency and security documentation.

Z

ZTC | Rūpnieciski ražotas koka karkasa mājas

ztc.lv

47

ZTC is a Latvian company specializing in the industrial production and assembly of wooden frame houses and CLT panel homes, serving clients across Europe. With over 30 years of experience, ZTC positions itself as a leading manufacturer in its sector, offering customized and sustainable building solutions. The website reflects a professional business with clear branding, multilingual support, and a portfolio showcasing completed projects. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google Analytics, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. WHOIS data was unavailable due to query limits, limiting domain trust verification. Overall, the site is credible and well-maintained, with moderate tracking and compliance indicators.

G

Giraffe360

giraffe360.com

75

Giraffe360 is a technology company specializing in virtual tour and 360-degree camera solutions tailored for real estate agents. Their offerings enable enhanced property marketing through immersive digital experiences. The website demonstrates a professional and modern digital presence, leveraging WordPress CMS with advanced SEO and performance optimizations. The technical infrastructure includes modern libraries and frameworks such as Gravity Forms, Yoast SEO, and Google reCAPTCHA, indicating a mature digital setup. Security posture is strong with HTTPS enforced and security headers present, though the absence of a dedicated security policy and incident response information suggests room for improvement. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. However, the lack of WHOIS data raises concerns about domain registration legitimacy, warranting further investigation. Overall, the website is trustworthy and professionally maintained, serving its target audience effectively.

A

Lielo izmēru apavu veikals Apavi 40+. Lielo kurpju mājas. - Apavi40plus

apavi40plus.lv

54

Apavi40plus.lv is an e-commerce retail website specializing in large size footwear and related accessories for both women and men. The site targets customers requiring shoe sizes beyond standard ranges, offering a niche product line including shoe care products and hosiery. The website is built on the PrestaShop CMS platform and employs common web technologies such as jQuery, Font Awesome, and Google Fonts. It uses HTTPS and Google Tag Manager for analytics. However, the site lacks visible privacy and cookie policies, and uses an outdated jQuery version which may pose security risks. WHOIS data is unavailable due to query limits, limiting domain legitimacy verification. Overall, the site presents a professional and user-friendly shopping experience but would benefit from enhanced security and privacy compliance measures.

L

Local Initiatives Support Corporation

lisc.org

50

Local Initiatives Support Corporation (LISC) is a well-established non-profit organization focused on community development across the United States. It connects local groups with capital and technical expertise to foster inclusive, resilient communities. The organization operates in multiple sectors including affordable housing, economic development, education, health, and sustainability. LISC has a strong market position as a national leader with a history dating back to 1979 and operates several affiliate investment companies to bridge funding gaps in under-resourced communities. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and Facebook Pixel, with evidence of a Python-based CMS platform. The site is well-optimized for mobile and accessibility, with good SEO practices. Performance is moderate, and the site uses HTTPS with secure forms, though some security headers are not explicitly detected. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and CSRF protection on forms. However, it lacks visible security headers and an explicit cookie consent mechanism, which are recommended for enhanced security and privacy compliance. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable due to privacy protection, but the domain and website content align with a legitimate, large non-profit entity. Overall, LISC's website is professional, trustworthy, and content-rich, supporting its mission and business model effectively. Strategic recommendations include implementing cookie consent, enhancing security headers, and publishing explicit security and incident response policies to further strengthen trust and compliance.

B

Biznesa parks "Forums"

forum.lv

44

Biznesa parks “Forums” operates as a commercial real estate provider based in Riga, Latvia, offering a variety of rental spaces including offices, warehouses, production areas, and virtual offices. The website is professionally designed, targeting businesses and entrepreneurs seeking commercial spaces in the Riga area. The business model centers on leasing and related services such as legal address rental and co-working spaces, positioning itself as a local player in the real estate sector. Technically, the website employs a modern technology stack including jQuery, Bootstrap 4, Google Analytics, and various UI libraries to provide a responsive and user-friendly experience. The site is mobile optimized and includes standard SEO and accessibility features, though some improvements could be made in accessibility and security headers. Performance is moderate, with a good balance of content and interactive elements. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks explicit security headers and documented security policies. No vulnerabilities or exposed sensitive data were detected in the analysis. Privacy compliance is well addressed with clear cookie and privacy policies, including GDPR consent mechanisms. Contact information is transparent and consistent, enhancing business credibility. Overall, the website presents a moderate risk profile with no critical security issues detected. The absence of WHOIS data limits full domain legitimacy assessment, but the professional presentation and clear contact details support trustworthiness. Strategic recommendations include enhancing security headers, formalizing security policies, and improving accessibility compliance to strengthen the security posture and user trust.

K

Kitman Thulema Latvia

koncept.lv

41

Kitman Thulema Latvia operates as a branch of the Estonian manufacturing company Kitman Thulema, specializing in metal processing and production of trade equipment, metal furniture, and office furniture. The company targets business clients requiring high-quality manufacturing and project-based services in Latvia and the Baltic region. The website is built on Joomla CMS and uses common JavaScript libraries for UI enhancements. It provides multilingual support and clear contact information, indicating a professional business presence. However, the absence of privacy and cookie policies and lack of visible security headers suggest gaps in compliance and security maturity. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site presents a medium-sized manufacturing business with moderate digital maturity and a need for improved security and privacy practices.

M

Morrison Freight

morrison.com

54

Morrison Freight Ltd is a well-established, independently-owned freight forwarding company specializing in European logistics and road freight solutions. The company offers daily freight services across 25 European countries and emphasizes a professional, personal approach with over 30 years of industry experience. Their key services include road freight, intermodal transport, warehousing, and seafreight. The website reflects a strong market position with multi-award recognition and AEO certification, targeting businesses requiring reliable European freight services. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and UIkit, leveraging jQuery and FontAwesome for UI components. It integrates Google Analytics and Tag Manager for tracking, and uses Google reCAPTCHA v3 to secure forms. The site is mobile-optimized with good SEO practices and moderate performance. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site enforces HTTPS and uses anti-spam measures on forms, but lacks visible security headers and vulnerability disclosure mechanisms. The absence of WHOIS registration data for the domain is a notable concern, as it conflicts with the company's claimed long history, potentially impacting trustworthiness. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms. Overall, the website is professional and trustworthy in content and design but would benefit from improved transparency in domain registration and enhanced security policies. Strategic improvements in security headers, incident response documentation, and WHOIS data clarity are recommended to strengthen trust and compliance.

S

SIA “FRESH MEDIA"

armadillo.lv

52

Armadillo.lv is a Latvian marketing and media agency operating under the legal entity SIA “FRESH MEDIA". The company offers a range of creative services including marketing materials design, web development, social media communication, and campaign management, targeting local Latvian clients. The website is professionally designed with a clear portfolio showcasing their work, indicating a small but established presence in the Latvian media sector. Technically, the site uses a PyroCMS backend with a variety of JavaScript libraries including jQuery, Bootstrap, and Owl Carousel, though some libraries like jQuery are outdated, posing potential security risks. The site is accessible over HTTPS and integrates common marketing and analytics tools such as Facebook Pixel and Google Analytics, but lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with no visible security headers and no forms on the homepage, reducing attack surface but also limiting user interaction. Overall, the site is functional and professional but would benefit from enhanced security practices and privacy compliance to improve trust and reduce risk.

Greenterra is a Latvian company specializing in the manufacturing and export of peat and wood materials, including taras dēļi (wood boards) and peat products. The company offers export procedure services and product transportation via land and sea, targeting agricultural, horticultural, and industrial clients. The website reflects a regional supplier with a focus on quality natural products and export logistics. Technically, the site is built on an older TYPO3 CMS version with legacy JavaScript libraries, integrated with Bitrix24 CRM and JivoSite chat for customer engagement. While HTTPS is properly implemented, the site lacks modern security headers and uses outdated libraries, posing potential security risks. Privacy and cookie policies are absent, indicating compliance gaps with GDPR. Contact information and social media presence are clearly provided, enhancing business credibility. Overall, the site is functional and professional but requires modernization and improved privacy compliance to strengthen its security posture and trustworthiness.

О

ООО «Киномания.ТВ»

voxell.tv

63

Multilandia.ru is a Russian children's entertainment and educational TV channel website operated by ООО «Киномания.ТВ». The site offers a rich catalog of animated content, program schedules, contests, and announcements, targeting children and families. It leverages a modern technical stack centered on Bitrix CMS and popular JavaScript libraries, ensuring a responsive and user-friendly experience. The website maintains a consistent brand presence across multiple social media platforms and provides basic privacy policy information. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though it lacks some security headers and cookie consent mechanisms. Overall, the site is legitimate, professionally maintained, and well-positioned in its niche.

O

OÜ E-Betoonelement

consolis.lv

46

Consolis Latvija SIA is a leading Latvian supplier of precast concrete construction elements and solutions, operating as part of the international Consolis Group. The company offers a full-service business model encompassing design, manufacturing, delivery, and installation for residential, industrial, and infrastructure projects. Their market position is strong within Latvia, targeting construction companies, real estate developers, and industrial clients. The website reflects a professional and modern digital presence with multilingual support and clear business messaging. Technically, the site is built on WordPress with Oxygen Builder and uses modern web technologies, though some security headers are missing. The security posture is generally good with HTTPS enforced and no visible sensitive data exposure, but improvements are recommended in security headers and cookie consent mechanisms. Overall, the site is trustworthy and well-structured, though WHOIS data is unavailable due to query limits, which slightly reduces domain trust verification.

Gultni.lv is an established Latvian e-commerce platform specializing in industrial supplies including bearings, springs, seals, industrial chemicals, tools, power transmission components, motors, reducers, and other industrial elements. The website targets industrial companies, maintenance professionals, and engineers requiring quality industrial components. It maintains a broad product catalog and partnerships with recognized brands, positioning itself as a key regional supplier in Latvia. Technically, the website uses a variety of JavaScript libraries and Google Analytics for tracking, built on the DIRcms platform. The site is accessible, uses HTTPS with good SSL configuration, but lacks some security headers and an explicit privacy policy page, which are areas for improvement. Contact information is clearly provided, including phone, email, and physical address, enhancing business credibility. Overall, the site demonstrates a moderate to good level of digital maturity with room for enhancements in privacy compliance and security best practices.

V

VUCA communications

vuca.lv

46

VUCA communications is a full-service integrated advertising agency based in Latvia, offering a range of creative and marketing services including advertising campaigns, branding, content marketing, and media production. The website is built on WordPress and uses modern web technologies such as jQuery, Bootstrap, and Google Analytics, indicating a moderate level of digital maturity. The site features multimedia content including a Vimeo video background and social media integration, targeting businesses seeking creative advertising solutions. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data due to query limits limits full domain legitimacy verification. Overall, the website presents a professional image but would benefit from enhanced privacy compliance and security best practices.

B

BKF Engineering

bkf.com

48

BKF Engineers is a professional engineering firm specializing in water resources, sustainability, and infrastructure projects. The company maintains a professional online presence with a well-structured website built on WordPress and Elementor, featuring modern web technologies and integrations such as Google Analytics and HubSpot. The website is accessible, mobile-optimized, and demonstrates good SEO and content quality. Security posture is generally good with HTTPS enabled and no visible sensitive data exposure, though the absence of security headers and cookie consent mechanisms indicates room for improvement. The lack of WHOIS registration data raises concerns about domain legitimacy, but the professional branding and active social media presence support the company's credibility. Strategic recommendations include enhancing security headers, implementing privacy compliance mechanisms, and publishing security policies to strengthen trust and compliance.

TaxLink Latvia is a professional services firm specializing in tax, audit, accounting, and financial consulting services primarily for businesses with active operations in Latvia. As a member of the international IR Global network, it offers expert solutions with global reach, targeting both companies and private individuals. The company positions itself as a leading international level audit and consulting firm with over 14 years of experience and a broad client base. The website reflects a professional and consistent brand image, showcasing key services such as transfer pricing, tax risk management, and financial consulting. The technical infrastructure of the website is built on modern and widely used technologies including jQuery, Bootstrap, Swiper.js, and Google services such as Maps, Tag Manager, and Analytics. The site is mobile-optimized and provides a good user experience with clear navigation and responsive design. However, some SEO and accessibility features could be improved for better performance and compliance. From a security perspective, the website uses HTTPS and employs standard best practices such as asynchronous loading of analytics scripts. There is no evidence of exposed sensitive data or vulnerable libraries in the provided content. However, security headers are not explicitly detected, and no formal security or incident response policies are published on the site. Privacy and cookie policies are present, indicating some level of compliance with data protection regulations, though GDPR compliance is not explicitly confirmed. Overall, the website presents a trustworthy and professional image suitable for its business domain. The lack of WHOIS data limits the ability to fully verify domain legitimacy, but the content and presentation suggest a legitimate and established business. Strategic recommendations include enhancing security headers, publishing incident response contacts, improving SEO and accessibility, and adding a security.txt file for vulnerability disclosure.

K

Komercizglītības centrs SIA

kic.lv

50

Komercizglītības centrs SIA is a leading Latvian educational company specializing in professional development courses for business leaders, managers, and professionals. The company offers a wide range of training programs focused on business management, sales, production efficiency, and personal leadership, delivered through various formats including in-person, remote, and hybrid. Their market position is strong within Latvia, supported by partnerships with notable clients and access to EU funding for training programs. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and Fancybox, alongside Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good SEO practices and a cookie consent mechanism compliant with GDPR. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation and client references support its legitimacy. Overall, the website presents a credible and professional business with good technical and security posture, though improvements in security headers and transparency policies are recommended to enhance trust and compliance.

I

Indus Towers

industowers.com

73

Indus Towers Limited is a leading enterprise in the telecommunications infrastructure sector in India, operating one of the largest mobile tower networks globally. The company provides critical telecom tower infrastructure, power solutions, and space leasing services to telecom operators across all 22 telecom circles in India. Their business model focuses on shared infrastructure to optimize telecom network deployment and operational efficiency. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for data insights. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place; however, the absence of security headers and public security policies indicates room for improvement. WHOIS data is unavailable, which slightly impacts domain trustworthiness, but the overall business credibility and digital footprint support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and verifying domain registration details to improve transparency and trust.

A

AFINANCE FINANCIAL CONSULTING SL

afinance.es

59

aFinance is a specialized mortgage brokerage company based in Spain, offering comprehensive mortgage management and negotiation services. The company positions itself as a market reference, providing services such as mortgage simulators, debt consolidation, and personalized real estate shopping assistance. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, targeting individuals seeking mortgage solutions in Spain. Technically, the site employs modern analytics and tracking tools with appropriate consent mechanisms, ensuring GDPR compliance. Security posture is strong with HTTPS enforcement, security headers, and secure form handling, although no explicit security policy or incident response information is published. WHOIS data confirms the legitimacy of the domain and its alignment with the business identity. Overall, the site demonstrates high professionalism, trustworthiness, and compliance, suitable for its financial services sector.

C

CHBC Office Group

chbc.eu

58

CHBC Office Group is a professional real estate service provider specializing in fully serviced bespoke turnkey office workspaces with fixed monthly costs and zero capital expense. They serve organizations worldwide, offering solutions such as fit space solutions, fit outs, facilities management, and business centers. The company positions itself as an innovator with a global reach and a trusted partner for workspace management. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Google Analytics, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms, which are recommended for improved compliance and protection. The absence of WHOIS data for the domain is a notable concern for domain legitimacy, although the website content and business information appear professional and trustworthy. Overall, the website scores well in business credibility and content quality but should address privacy compliance and security header improvements to enhance trust and compliance.

A

Arcom Digital

arcomlabs.com

63

Arcom Digital is a technology company specializing in advanced digital tools designed to improve telecommunications network performance. Their product portfolio includes innovative solutions for fault identification, leak detection, and proactive network maintenance, targeting network operators and technicians. The website presents a professional and consistent brand image with clear navigation and relevant content focused on their technology offerings. Technically, the website is built on WordPress and utilizes common JavaScript libraries such as jQuery, Slick Carousel, and Fancybox. The site is mobile optimized and performs moderately well, with good SEO and basic accessibility features. Security-wise, the site enforces HTTPS but lacks several security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. The WHOIS data is notably absent, indicating either an unregistered domain or privacy-protected registration that is not publicly available. This discrepancy reduces the trustworthiness of the domain despite the professional website presence. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Overall, Arcom Digital's website is functional and professional but would benefit from enhanced security headers, improved privacy compliance, and clarification of domain registration details to strengthen trust and compliance posture.

A

Aerones

aerones.com

62

Aerones is a specialized service provider in the energy sector focusing on robotic wind turbine inspection, maintenance, and repair services worldwide. Established in 2014, the company positions itself as a world leader in robotic wind turbine care systems, offering a comprehensive suite of services including blade internal inspection, lightning protection system inspections, drone inspections, cleaning, and repair. Their target audience includes wind park operators and maintenance teams seeking to reduce downtime and improve operational efficiency. The website is professionally designed, multilingual, and integrates modern web technologies such as WordPress with Elementor, Bootstrap, and various JavaScript libraries, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced, domain locking, and Cloudflare DNS usage, though DNSSEC is not enabled and explicit security headers are not observed. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, the absence of a terms of service page and a formal security or incident response policy indicates areas for improvement. Overall, Aerones demonstrates a strong market presence with a professional online footprint and good security hygiene, suitable for its business domain.

S

SIA Adros Baltija

adros.lv

50

Adros Baltija is a Latvian personnel recruitment and training agency established in 1996, specializing in full-cycle recruitment, corporate training, audits, and career consulting services. The company targets businesses across various sectors including IT, marketing, finance, manufacturing, and sales. Their website reflects a professional and consistent brand presence with clear service offerings and client engagement. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and CookieYes for GDPR compliance. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. The domain WHOIS data is unavailable due to query limits, which limits full trust assessment, but the website content and business information appear legitimate and credible.

HugeDomains.com operates as a professional domain marketplace specializing in the sale of premium domain names such as ExpoAssist.com. Established since 2005, the company offers flexible purchasing options including outright purchase and payment plans, supported by a 30-day money back guarantee and quick domain delivery. The website is well-structured, mobile-optimized, and provides clear navigation and trust signals including customer testimonials and secure payment options. Technically, the site employs modern web technologies such as jQuery, Google Analytics, and Google reCAPTCHA Enterprise to enhance user experience and security. SSL encryption is enforced, ensuring secure data transmission. However, the absence of WHOIS data for the hugedomains.com domain introduces some uncertainty regarding domain registration transparency, though this is likely due to privacy protection or registrar policies rather than malicious intent. Overall, the security posture is strong with room for improvement in implementing additional security headers and explicit security policies. Contact information is available primarily via phone and contact forms, with no public company emails disclosed.

S

Scandagra

scandagra.lv

53

Scandagra Latvia operates as a regional agricultural company specializing in the supply of agricultural raw materials and grain procurement services, including conventional and organic grains. The company targets Latvian farmers and agricultural businesses, positioning itself as a knowledgeable and experienced partner with over 15 years in the market. The website reflects a professional digital presence built on WordPress, integrating modern web technologies such as Google Analytics and Tag Manager for performance and marketing insights. The site is well-structured, mobile-optimized, and SEO-friendly, supporting effective user engagement. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit privacy and cookie policies are lacking. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the website demonstrates a credible and professional business presence in the Latvian agricultural sector.

E

Elva DMS SIA

elvadms.com

66

Elva DMS SIA operates a professional website offering an automotive ERP solution integrated with Microsoft Dynamics 365, targeting automotive dealerships and related businesses. The company provides comprehensive dealer management software covering vehicle sales, used car sales, vehicle services, fleet maintenance, and spare part sales management. The website is well-structured, with good content quality and branding consistency, reflecting a niche market position in the transportation sector primarily in Latvia. Technically, the site is built on WordPress and leverages modern libraries and plugins such as jQuery, Bootstrap, and Cookiebot for cookie consent management. Google Analytics is used for visitor tracking, indicating moderate user tracking levels. Security posture is good with HTTPS enforced and several security headers present, although there is room for improvement in CSP implementation and incident response transparency. The absence of WHOIS registration data is a notable concern, suggesting either privacy protection or a domain registration issue, which impacts the trustworthiness score. Overall, the site demonstrates a solid digital presence but should address privacy policy publication and domain registration transparency to enhance credibility and compliance.

P

Premium Medical

premiummedical.lv

36

Premium Medical is a premium-class medical clinic based in Riga, Latvia, offering a wide range of healthcare services including consultations, diagnostics, physiotherapy, aesthetic medicine, dental care, and specialized health programs. The clinic positions itself as the first premium medical institution in Latvia with over 100 specialists across 35 medical fields, targeting adults and children seeking high-quality healthcare. The website is professionally designed with excellent content quality, clear navigation, and mobile optimization, reflecting a mature digital presence. Technically, the site employs modern analytics and tracking tools such as Google Analytics, Yandex Metrika, Microsoft Clarity, and Facebook Pixel, indicating a strong marketing and user behavior analysis capability. Security-wise, the site enforces HTTPS and uses secure forms but lacks some recommended security headers and explicit published security policies, which could be improved to enhance trust and compliance. The absence of WHOIS data due to query limits limits domain trust verification, but the overall business presentation and contact transparency support legitimacy. Strategic recommendations include implementing security headers, publishing incident response and vulnerability disclosure policies, and maintaining regular audits of third-party scripts to strengthen security posture and compliance.

H

Hotel Bergs Suites

hotelbergs.lv

40

Hotel Bergs Suites is a four-star boutique hotel located in the heart of Riga, Latvia, offering spacious designer suites and event hosting facilities. The hotel targets both leisure and business travelers seeking premium accommodation and meeting venues in a historic city center location. The website presents a professional and consistent brand image with clear contact details and booking options. Technically, the site uses a PyroCMS backend with common frontend libraries such as jQuery, Bootstrap, and Owl Carousel, providing a responsive and user-friendly experience. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks visible advanced security headers and published security policies. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the website is trustworthy and credible, though WHOIS data is unavailable due to query limits, which slightly limits domain legitimacy verification.

D

Dorian LPG Ltd

dorianlpg.com

68

Dorian LPG Ltd is a leading liquefied petroleum gas shipping company specializing in the ownership and operation of very large gas carriers (VLGCs). With a global footprint including offices in the United States, Greece, and Denmark, the company plays a critical role in transporting LPG to support the world's energy transition. The website serves primarily as an investor relations portal, providing comprehensive financial reports, ESG disclosures, and corporate governance information. The company is publicly traded on the NYSE under the ticker LPG, reinforcing its market credibility and transparency. Technically, the website is built on a mature ASP.NET WebForms platform integrated with Q4 Inc's investor relations tools, leveraging modern JavaScript libraries such as jQuery, Splide.js, and DataTables for enhanced user experience. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Security measures include HTTPS enforcement, Content Security Policy headers, anti-CSRF tokens, and Google reCAPTCHA integration, reflecting a solid security posture. No critical vulnerabilities or WAF blocks were detected, and the domain registration details align well with the company's public profile, indicating legitimacy and trustworthiness. Privacy and cookie policies are present and comprehensive, with active consent mechanisms, supporting GDPR compliance. However, explicit security policies, incident response contacts, and terms of service pages are absent, representing areas for improvement. Overall, the website is professional, secure, and well-suited for its investor relations purpose, though enhancements in security transparency and contact information could further strengthen trust and compliance.

S

SIA Eddi

eddi.lv

64

SIA Eddi is a Latvian-based company specializing in business technology solutions, including IT infrastructure, cybersecurity, business process automation, and engineering services. With over 30 years of experience in the Baltic and Scandinavian markets, the company offers a broad portfolio of services such as business management consulting, IT outsourcing, industrial automation, and cost management tools like Activity Based Costing (ABC). The website is professionally designed, content-rich, and targets businesses seeking to optimize their operations through technology. Technically, the site uses modern frameworks like Bootstrap and integrates analytics and live chat tools, ensuring good user experience and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and incident response information could enhance trust. The absence of WHOIS data due to query limits restricts full domain legitimacy verification, but the overall presentation and detailed service offerings indicate a credible business. Strategic recommendations include enhancing security headers, publishing incident response contacts, and maintaining up-to-date compliance with regulations such as GDPR and NIS2.

V

VILKS Group

multilog.lv

52

VILKS Group is a Latvian-based transportation company specializing in international road freight transport with temperature control, serving multiple European countries. The company offers a range of logistics services including groupage and full cargo transportation, temperature-controlled warehousing, local deliveries, and express freight services. With over 14 years of experience and multiple subsidiaries, VILKS positions itself as a reliable partner in the temperature-controlled logistics sector. The website is professionally designed, mobile-optimized, and provides comprehensive contact information and service descriptions. Technically, the site runs on WordPress with modern tracking and marketing tools integrated, including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented on forms, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are found. Overall, the site reflects a credible and professional business with moderate technical maturity and a good security baseline.

Latvikon is a well-established Latvian educational center specializing in accounting, project management, and business-related courses and seminars. With over 25 years of experience and a large alumni base, it holds a strong market position in Latvia's education sector. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive course information. Technically, it uses a modern tech stack including Bootstrap, jQuery, and popular plugins, with Google Analytics for user tracking. Security posture is moderate with HTTPS implied but lacks visible security headers and formal privacy or cookie policies, indicating room for compliance improvement. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site appears trustworthy and functional but should enhance privacy compliance and security practices.

HugeDomains operates as a reputable domain marketplace specializing in the sale of premium domain names. Established since 2005, the company offers a secure and user-friendly platform for customers to purchase domains either outright or via payment plans. The website demonstrates a professional design with clear navigation and strong trust indicators such as a 30-day money back guarantee and customer testimonials. Technically, the site employs modern web technologies including jQuery, Google Analytics, and Google reCAPTCHA Enterprise, ensuring both performance and security. The presence of cookie consent mechanisms and comprehensive privacy policies reflect a commitment to privacy compliance. Security posture is strong with HTTPS enforced and secure payment options, although some security headers could be improved. WHOIS data is unavailable due to privacy protection, which is typical for domain marketplaces and does not detract from the site's legitimacy. Overall, HugeDomains presents a trustworthy and well-maintained e-commerce platform for domain acquisition.

L

Latvijas Futbola federācija

lff.lv

42

The Latvijas Futbola federācija (LFF) is the official governing body for football in Latvia, providing comprehensive services including national team management, competition organization, coach and referee education, and fan engagement. The website serves as a central hub for football-related news, events, and resources targeted at players, clubs, fans, and stakeholders within Latvia. The site is well-branded, consistent, and professionally maintained, reflecting its authoritative position in the national sports sector. Technically, the website employs a modern technology stack including jQuery, Google Analytics, Facebook Pixel, Hotjar, and Cloudflare for hosting and security. It uses ASP.NET MVC technology as indicated by session and security cookies. The site is mobile-optimized, accessible, and SEO-friendly, with a good performance profile. Security posture is strong with HTTPS enforced, CSRF protection, and cookie consent mechanisms, although some security headers could be improved. Privacy compliance is robust with clear privacy and cookie policies and user consent mechanisms. Contact information is transparent and complete, enhancing business credibility. Overall, the website is a reliable and professional digital presence for the Latvian Football Federation.

HugeDomains.com operates as a reputable domain marketplace specializing in the sale of premium domain names with flexible payment options including payment plans. The website is professionally designed, mobile-optimized, and provides a secure shopping experience with SSL encryption and trusted payment methods such as PayPal and Escrow.com. Customer testimonials and a 30-day money back guarantee reinforce trust and credibility. The technical infrastructure leverages modern JavaScript libraries, Google Analytics for tracking, and Google reCAPTCHA for bot protection, indicating a mature digital presence. However, WHOIS data for the domain is not publicly available, likely due to privacy protection or registrar policies, which is common in this industry. Overall, the site demonstrates a strong security posture with room for improvement in publishing explicit security policies and headers.

H

Hexaware Technologies Pvt Ltd

hexaware.com

83

Hexaware Technologies Pvt Ltd is a well-established global IT consulting and services company founded in 1996, with a strong market presence and $1.4 billion in annual revenue. The company offers a broad portfolio of technology services including digital software solutions, cloud services, data analytics, AI-driven automation, and business process outsourcing, targeting enterprise clients across multiple industries. Their website reflects a mature digital infrastructure with modern technologies, responsive design, and comprehensive content showcasing their expertise and client success stories. Security posture is robust with HTTPS, clientTransferProhibited domain status, CAPTCHA-protected forms, and reputable analytics tools, though there is room for improvement in DNSSEC and security headers. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, Hexaware demonstrates high business credibility and professionalism, supported by consistent branding and trust indicators.

T

Trypet

trypet.lv

28

Trypet is a Latvian manufacturing company specializing in PET containers such as jars and bottles, offering comprehensive packaging solutions including design, testing, and production of PET preforms and plastic closures. Established in 2005, the company positions itself as a flexible provider capable of handling small to large orders with a unique approach combining two main PET production technologies. The website reflects a small-sized manufacturing business with a focus on customized packaging solutions for business clients. Technically, the website uses a moderately modern stack including Bootstrap, jQuery, Google Analytics, and Google Maps API, but some components like jQuery are outdated. The site is accessible, mobile-optimized, and professionally designed with clear navigation. Security posture is moderate with HTTPS implied but lacking security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data is unavailable due to query limits, limiting domain trust verification. Overall, the website is functional and professional but would benefit from improved security and privacy practices.