Security Directory

Eesti Toidutee is a well-established platform dedicated to promoting Estonian local food culture and tourism. It connects food producers, restaurants, and consumers by offering curated food routes, event information, and educational workshops. The website targets consumers interested in authentic Estonian food experiences, tourists, and local food businesses. It holds a recognized position in the local hospitality and tourism sector, emphasizing regional food specialties and seasonal offerings. Technically, the website employs a traditional tech stack with jQuery and jQuery UI libraries, Google Analytics, and Google Tag Manager for tracking. While the site is mobile-optimized and offers good user experience with clear navigation and rich content, it uses outdated JavaScript libraries that pose potential security risks. The site lacks modern security headers and explicit privacy or cookie policies, indicating areas for compliance improvement. From a security perspective, HTTPS is enabled, and no sensitive data is exposed in the HTML. However, the absence of security headers and use of outdated libraries reduce the overall security posture. There is no visible incident response or security policy information, which could impact trustworthiness. The WHOIS data aligns well with the website's Estonian focus, showing consistent and transparent registration details. Overall, the website is functional, content-rich, and professionally presented but requires enhancements in privacy compliance and security best practices to improve trust and reduce risk. Strategic updates to technology and policy transparency will strengthen its position as a trusted promoter of Estonian local food culture.

S

SA Jõgevamaa Arendus- ja Ettevõtluskeskus

kultuuritee.ee

44

Kultuuritee.ee is a regional cultural tourism website managed by SA Jõgevamaa Arendus- ja Ettevõtluskeskus, promoting the cultural heritage and tourism opportunities in the Jõgevamaa region of Estonia. The site provides information about cultural routes, events, maps, and local attractions, targeting tourists and cultural visitors interested in exploring Estonian history and culture. The business model is non-profit and focused on regional development and cultural promotion. Technically, the website is built on WordPress with common plugins like Yoast SEO and uses Google Analytics and Tag Manager for visitor tracking. The hosting is provided by Zone Media OÜ, and the domain is registered since 2019, consistent with the site's purpose. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional, well-branded, and provides relevant content but could improve in privacy and security practices.

S

SportAccord

sportaccord.com

60

SportAccord is a globally recognized organization dedicated to connecting International Sport Federations, cities, right holders, and businesses to shape the future of sport. The website reflects a professional and well-established entity with a strong market position in the sports event and federation engagement sector. Key services include organizing major events such as the SportAccord Convention and the International Federation Forum, alongside providing platforms for sustainability and membership applications. The technical infrastructure is built on WordPress with modern plugins and analytics tools, ensuring a robust digital presence. Security posture is strong with HTTPS enforcement, security headers, and monitoring tools like New Relic, although explicit security policies and incident response details are not publicly disclosed. Overall, the website demonstrates high professionalism, good privacy compliance, and trustworthy business credibility.

T

The European Olympic Committees

eurolympic.org

50

The European Olympic Committees (EOC) is a well-established non-profit organization dedicated to promoting the fundamental principles of Olympism across Europe. The website serves as the official digital presence for the EOC, providing comprehensive information about its activities, events, awards, and news. It targets Olympic committees, athletes, sports organizations, and the general public interested in European Olympic sports. The organization holds a strong market position as the continental association for European Olympic Committees and organizes major sports events such as the European Games and the European Youth Olympic Festival. Technically, the website is built on a modern WordPress platform with popular plugins like WPBakery Page Builder and integrates Bootstrap for responsive design. It employs Google Analytics for traffic analysis and Mailchimp for newsletter subscriptions. The site is well-optimized for mobile devices and offers good SEO and accessibility features, though some improvements in accessibility could be made. From a security perspective, the site uses HTTPS with strong security headers and secure forms that include consent checkboxes. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit cookie consent mechanisms and does not publish a security incident response or vulnerability disclosure policy, which are areas for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. The lack of WHOIS data limits domain registration insights, but the website's branding, content quality, and external partnerships strongly support its legitimacy. Strategic recommendations include implementing cookie consent, publishing security policies, and enhancing accessibility to further strengthen the site's security posture and user trust.

E

Eesti Spordi- ja Olümpiamuuseum SA

spordimuuseum.ee

49

Eesti Spordi- ja Olümpiamuuseum is a well-established cultural institution located in Tartu, Estonia, serving as the largest and most modern sports museum in the Baltic region. The museum offers a rich visitor experience with over 15 attractions, educational programs, exhibitions, and a dedicated Hall of Fame. Its target audience includes families, groups, individual sports enthusiasts, and educational institutions. The business model combines ticket sales, educational services, event hosting, and an online store. The museum maintains a strong market position supported by partnerships with cultural and Olympic organizations and environmental certifications.

Z

Zone Media OÜ

korvpall24.ee

36

Korvpall24.ee is a specialized Estonian media website focusing on basketball news, interviews, and event coverage. Operated by Zone Media OÜ since 2017, it serves a niche audience of basketball enthusiasts primarily in Estonia. The website features regularly updated content, including interviews and reports on local and international basketball events. Technically, the site is built on WordPress with Elementor and integrates modern web technologies such as push notifications (OneSignal), Google Analytics, and Facebook Pixel for marketing and analytics. The site uses HTTPS with good SSL configuration, ensuring secure data transmission. However, it lacks a cookie consent mechanism and explicit security or incident response policies, which are important for GDPR compliance and user trust. Overall, the site demonstrates a good balance of content quality, technical implementation, and business credibility, but could improve privacy compliance and security transparency.

Teamspirit is an Estonian e-commerce retailer specializing in sportswear and merchandise for local sports teams and events. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Google Analytics, Facebook Pixel, and CookieYes for consent management. The business targets sports fans and clubs within Estonia, offering custom sports apparel and accessories. The domain is registered to an Estonian company, Zone Media OÜ, consistent with the website's market and content. The website demonstrates good technical maturity with responsive design, SEO optimization, and a clear navigation structure. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

E

Eesti Maaturismi Ühing

saunatee.ee

26

Saunatee.ee is a specialized Estonian website dedicated to promoting sauna culture, tourism, and related products. Operated by Eesti Maaturismi Ühing, it serves as a comprehensive portal listing various sauna types, sauna packages, and educational content about sauna traditions in Estonia. The website targets sauna enthusiasts and tourists interested in authentic Estonian sauna experiences, positioning itself as a niche cultural and tourism information platform. The business model focuses on information dissemination and promotion of sauna-related services and products, supported by a small but consistent content base and community engagement through newsletters and social media.

Z

Zone Media OÜ

visitkorvemaa.ee

42

VisitKorvemaa is a regional tourism platform focused on promoting the Kõrvemaa nature area in Estonia. It aggregates local tourism services and offers authentic nature and community experiences including guided tours, outdoor activities, accommodation, and workshops. The website is built on WordPress with WooCommerce for e-commerce capabilities and uses modern plugins for SEO and marketing. The business is small, founded in 2021, and targets tourists interested in nature and active tourism. The platform integrates social media and third-party review widgets to build trust and engagement. Technically, the site is well-structured and mobile-optimized but lacks some advanced security headers and explicit privacy and cookie policies. The domain registration is consistent and transparent, supporting the legitimacy of the business.

B

Budget Truck Rental

budgettruck.ca

68

Budget Truck Rental Canada operates a professional and well-structured website offering moving truck rentals and related services primarily targeting Canadian customers. The site is built on a modern technology stack including AngularJS and Adobe Experience Manager, integrating multiple analytics and marketing tools to optimize user engagement and business insights. The business is positioned as a large transportation service provider with a strong brand presence in Canada. Security posture is moderate with HTTPS usage and secure analytics scripts, but lacks visible security headers and explicit privacy or incident response policies. WHOIS data is unavailable, likely due to privacy protection, which limits domain trust verification but is common for commercial entities. Overall, the website is functional, professional, and trustworthy with room for improvement in privacy compliance and security transparency.

T

The Hertz Corporation

hertz.ie

70

The website www.hertz.ie is the Irish regional portal for The Hertz Corporation, a globally recognized car rental company. It offers car and van rental services across Ireland with a focus on quality and convenience, including electric vehicle options. The site supports multiple languages and internationalization, reflecting a mature digital presence. Technically, the site employs modern JavaScript frameworks, asynchronous script loading, and integrates Google services such as Tag Manager and Analytics, alongside Stripe for payments and reCAPTCHA for bot protection. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response information are not evident. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR-aligned cookie consent. Business credibility is supported by consistent branding and professional content, though direct contact details are not prominently displayed on the analyzed page. Overall, the site is professionally designed, functional, and secure, suitable for enterprise-level operations in the transportation sector.

T

The Hertz Corporation

hertz.es

71

The website www.hertz.es is the official Spanish portal for The Hertz Corporation, a globally recognized car and van rental company. It offers online reservation services tailored to the Spanish market and integrates with a broad international network of Hertz websites. The site targets consumers and businesses seeking vehicle rentals in Spain and worldwide, providing a professional and localized user experience. The business model centers on vehicle rental services supported by a loyalty program and business rental solutions. Technically, the site employs modern JavaScript frameworks, Google analytics and tag management, and security tools such as reCAPTCHA Enterprise, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with a comprehensive privacy policy and GDPR-aligned cookie consent. However, WHOIS data is restricted due to .es registry policies, limiting public domain registration transparency. Overall, the site is professional, secure, and trustworthy, suitable for enterprise-level operations.

B

Budget Car Rental Canada

budget.ca

67

Budget Car Rental Canada operates a comprehensive online platform for car rental services targeting Canadian consumers and businesses. The website offers reservation capabilities, promotional deals, loyalty programs, and additional services such as moving truck rentals. The company positions itself as a major player in the Canadian transportation rental market with strong branding and partner integrations. Technically, the site leverages modern web technologies including AngularJS, Adobe Experience Manager CMS, and integrates multiple analytics and marketing tools. Security posture is solid with HTTPS enforcement and bot protection via reCAPTCHA Enterprise, though some security headers are not explicitly detected. Privacy compliance is moderate due to lack of visible privacy and cookie policies in the provided content. WHOIS data is unavailable, likely due to privacy protection, but the site content and branding indicate legitimacy. Overall, the site is professional, user-friendly, and well-optimized for mobile users.

A

AS Kihnu Veeteed

veeteed.com

56

AS Kihnu Veeteed operates as a regional ferry transportation service provider in Estonia, specializing in ferry routes connecting several islands including Kihnu, Vormsi, Hiiumaa, Saaremaa, and others. The company offers online ticket sales through a modern React-based single-page application, targeting residents and visitors requiring reliable ferry transport. The website is professionally designed with consistent branding and provides essential information such as schedules, routes, and news updates. Technical infrastructure leverages modern web technologies including React, Material-UI, service workers for offline capabilities, and Google Analytics for user behavior tracking. Hosting and DNS services are managed via Google Cloud infrastructure, ensuring reliable uptime and performance. Security posture is adequate with HTTPS enforced and domain transfer protection enabled; however, DNSSEC is not enabled and security headers are not explicitly present, indicating room for improvement. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though terms of service and security policies are absent. Overall, the website demonstrates a moderate to good level of digital maturity and business credibility, with recommendations to enhance security headers, DNSSEC, and incident response disclosures to strengthen trust and compliance.

V

Visit Pärnu

visitparnu.com

51

Visit Pärnu operates a well-established regional tourism portal focused on the Pärnu area in Estonia, providing comprehensive information on accommodation, dining, events, transport, and general tourism guidance. The website targets tourists and visitors seeking detailed and localized travel information. The business is positioned as a key regional tourism information provider with a clear focus on hospitality and visitor services. Technically, the site is built on WordPress with Elementor and integrates modern plugins for search, analytics, and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, cookie consent implemented, and no critical vulnerabilities detected, though improvements in DNSSEC and security headers are recommended. Privacy compliance is robust with accessible privacy and cookie policies aligned with GDPR requirements. Overall, the site demonstrates a professional and trustworthy online presence with good user experience and content relevance.

Z

Zone Media OÜ

eestitoit.ee

50

Eestitoit.ee is a government-affiliated website focused on promoting Estonian food culture, local food products, and sustainable food practices. It serves as an informational and educational platform targeting Estonian residents, food enthusiasts, and culinary tourists. The site is well-branded and consistent with official government initiatives, featuring rich content about food events, traditions, and sustainability projects. Technically, the website is built on Drupal CMS and uses modern analytics tools such as Google Analytics and Matomo. It is mobile-optimized and accessible, with good SEO practices. Security-wise, the site implements cookie consent with an opt-in mechanism but lacks visible advanced security headers and a published privacy policy or terms of service. WHOIS data confirms the domain's legitimacy and long-standing registration since 2010. Overall, the website is professional, trustworthy, and serves its informational purpose effectively.

@

@weboinc

webolution.ee

39

Webolution is a small Estonian web development company specializing in creating functional digital solutions and websites. With nearly 20 years of experience, they position themselves as a reliable partner for businesses seeking end-to-end digital services from concept to launch. Their portfolio showcases a variety of projects including websites and e-commerce platforms, indicating a focus on quality and client satisfaction. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. Security measures include HTTPS enforcement and use of Google reCAPTCHA, though the absence of security headers and explicit privacy policies suggests room for improvement. Overall, the site is professional and trustworthy but could enhance compliance and security transparency.

E

Eesti Jalgpalli Liit

jalgpall.ee

44

Eesti Jalgpalli Liit is the official governing body for football in Estonia, managing national teams, leagues, and grassroots football development. The website serves as a comprehensive portal for football news, events, and organizational information targeted at players, fans, and stakeholders within Estonia's football community. The site integrates multimedia content including live scores, videos, and social media feeds, reflecting a mature digital presence. Technically, the website employs a custom CMS with modern JavaScript libraries and asynchronous loading of third-party SDKs such as Facebook and Google Analytics, ensuring moderate performance and good mobile optimization. Security posture is strong with enforced HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic but includes cookie consent and a privacy policy in Estonian. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the organization.

E

Eesti Võrkpalli Liit

volley.ee

40

Eesti Võrkpalli Liit operates as the official Estonian Volleyball Federation, providing comprehensive information on volleyball teams, competitions, and related activities in Estonia. The website serves as a central hub for volleyball enthusiasts, players, coaches, and fans, offering news, schedules, and organizational details. The site is well-structured and professionally designed, reflecting its role as a national sports governing body. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO, Google Analytics, and Facebook Pixel. It is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements some best practices like opening external links in new windows with noopener. However, it lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. Overall, the domain is legitimate, well-established since 2010, and consistent with the organization's profile. Strategic improvements in privacy compliance and security headers would enhance the site's trustworthiness and regulatory adherence.

L

Lääne-Virumaa Kossuliiga

virukorvpall.ee

39

Lääne-Virumaa Kossuliiga operates a regional basketball league website serving the Lääne-Virumaa community in Estonia. The site provides schedules, results, team information, and news updates related to basketball events. The business model focuses on sports event promotion and community engagement within the regional sports sector. The website is built on WordPress with SportsPress Pro plugin, indicating a moderate level of digital maturity and technical infrastructure. Hosting is provided by Zone Media OÜ, a known Estonian hosting provider. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, the absence of security headers and privacy policies indicates room for improvement. The site uses common analytics and marketing tools such as Google Analytics and AddThis, but lacks explicit privacy compliance mechanisms. Overall, the website is functional and professional but would benefit from enhanced privacy and security practices to improve trust and compliance.

P

Peipsimaa turism

visitpeipsi.com

47

Visitpeipsi.com is a regional tourism promotion website dedicated to Peipsimaa, Estonia, highlighting the area's natural beauty, cultural heritage, local cuisine, and events. The site targets tourists interested in authentic regional experiences, offering information, event promotion, and an e-commerce shop for local products. The business operates as a small-sized entity focused on hospitality and non-profit tourism promotion, founded in 2011. The website branding is consistent and content quality is good, supporting its market position as a key regional tourism promoter. Technically, the site is built on WordPress with WooCommerce and Yoast SEO plugins, leveraging jQuery and Google Analytics for functionality and tracking. The site is mobile-optimized with good navigation and SEO practices, though performance is moderate. Hosting details are not explicit but DNS and registrar data suggest a stable setup. No WAF or blocking mechanisms are detected, and the site uses HTTPS with a clientTransferProhibited domain status, indicating basic security measures. Security posture is moderate; while HTTPS is enforced, no DNSSEC or security headers are detected, and no explicit security or incident response policies are published. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. The domain WHOIS data aligns well with the website content, showing consistent registration and legitimacy. Overall, the site is functional and professional but could improve security and privacy compliance. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response policies to enhance trust and compliance.

V

Via Hanseatica

viahanseatica.info

42

Via Hanseatica is a regional tourism initiative promoting an international travel route through Latvia, Estonia, and Russia, focusing on cultural heritage, nature, and culinary experiences. The website serves as an informational and promotional platform supported by multiple regional tourism organizations and partners. The digital infrastructure is based on WordPress with standard SEO and analytics tools, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is weak due to missing policies and consent mechanisms. WHOIS data is unavailable, which slightly reduces trust but does not negate the legitimacy indicated by the website content and partnerships.

L

Lõuna-Eesti

visitsouthestonia.com

59

Lõuna-Eesti is a regional tourism promotion website dedicated to showcasing the cultural, natural, and hospitality offerings of South Estonia. The site targets tourists, families, pet owners, and tourism professionals, providing rich content about local attractions, events, and accommodations. The business operates as a regional destination marketing organization with a focus on enhancing visitor experience and promoting local culture and nature. Technically, the website is built on WordPress, leveraging modern tools such as Gravity Forms, Rank Math SEO, Hotjar, and Google Analytics. The site is hosted on a provider associated with the domain's nameservers and employs HTTPS with a good SSL configuration. Security posture is solid with cookie consent mechanisms and no visible critical vulnerabilities, though some security headers could be improved. Privacy compliance is partial, with a detailed cookie consent banner but no explicit privacy policy or terms of service found. Overall, the website is professional, well-branded, and trustworthy, with room for improvement in privacy and security documentation.

V

Visit Jõgeva | Avasta Jõgevamaa

visitjogeva.com

47

Visit Jõgeva is a regional tourism website dedicated to promoting the Jõgevamaa region in Estonia. It provides comprehensive information on local events, attractions, accommodation, food, active holidays, and local products, targeting tourists and visitors interested in exploring this area. The website is multilingual, supporting Estonian, English, German, Finnish, and Latvian languages, enhancing accessibility for international visitors. The business model focuses on informational and promotional services to boost regional tourism.

H

Haridus- ja Teadusministeerium (EENet)

progetiiger.ee

61

ProgeTiigri.ee is an official educational platform managed by the Estonian Ministry of Education and Research, providing a curated collection of over 100 educational tools and materials focused on programming, robotics, 3D design, and multimedia for teachers and educators. The website serves as a resource hub to support teaching activities with filtering capabilities to find suitable materials. The platform targets primarily educators in Estonia and operates as a government-backed educational resource. Technically, the website employs modern web technologies including Vue.js, jQuery, and the Foundation CSS framework, with integration of Google Analytics and Google Tag Manager for user tracking and analytics. The site is mobile optimized and accessible, with a moderate performance profile. Hosting appears to be managed by a government or educational network provider, ensuring stable infrastructure. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, alongside a cookie consent mechanism compliant with GDPR principles. However, it lacks several security headers that could enhance protection against common web threats. No privacy policy or terms of service pages were found, which represents a compliance gap. No explicit contact information or incident response channels are provided, limiting user support and security communication. Overall, the website is trustworthy and professionally maintained, with strong legitimacy due to government ownership and consistent domain registration. The main risks relate to missing formal privacy and security documentation and absence of security headers. Strategic improvements in these areas would enhance compliance and security posture.

M

MTÜ Eesti Pagulasabi

pagulasabi.ee

49

Eesti Pagulasabi is a well-established Estonian non-profit humanitarian organization founded in 2011, dedicated to supporting refugees and displaced persons both in Estonia and internationally. The organization provides a broad range of services including humanitarian aid, social and economic wellbeing programs, mental health support, and integration assistance. Their website reflects a professional and consistent brand presence with comprehensive content and multiple language support, targeting refugees, donors, volunteers, and partners. The donation infrastructure is robust, offering multiple payment options and detailed forms to facilitate contributions. Technically, the website is built on Drupal 9, leveraging modern analytics and consent management tools, and is hosted by a reputable Estonian registrar and hosting provider. Security posture is good with HTTPS enforced and reCAPTCHA implemented, though some security headers could be improved. Privacy compliance is strong with clear cookie consent and privacy policy documentation. Overall, the website is trustworthy, accessible, and professionally maintained, supporting the organization's mission effectively.

S

SA Harju Ettevõtlus- ja Arenduskeskus

heak.ee

43

SA Harju Ettevõtlus- ja Arenduskeskus (HEAK) is a regional non-profit foundation based in Estonia focused on supporting local development through consulting, training, and partnership initiatives. The organization targets entrepreneurs, civic associations, and tourism sector participants, offering free advisory services and organizing events to foster regional growth. The website reflects a stable and professional presence with clear business objectives and a consistent brand identity. Technically, the site is built on WordPress with common plugins for event management, multilingual support, and analytics integration, demonstrating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though improvements could be made by adding security headers and formal incident response contacts. Overall, the website is trustworthy and well-maintained, supporting the organization's mission effectively.

M

MTÜ Eesti Keskkonnamõju Hindajate Ühing

eaia.eu

41

MTÜ Eesti Keskkonnamõju Hindajate Ühing (KeMÜ) is a small Estonian non-profit organization founded in 2012 that unites professionals and interested parties in the field of environmental impact assessment. The website serves as an information hub and membership portal, offering news, organizational details, and contact avenues primarily through structured navigation and login forms. The organization targets environmental impact assessors and stakeholders within Estonia, positioning itself as a niche entity in the environmental non-profit sector. Technically, the website is built on Joomla CMS with Yootheme templates, leveraging common web technologies such as jQuery and Widgetkit. It integrates Google Analytics and Facebook Pixel for user tracking and marketing insights. The site is mobile-optimized and features a moderate performance profile. Security measures include HTTPS enforcement and CSRF tokens in forms, but it lacks advanced security headers and explicit privacy or cookie policies. From a security perspective, the site demonstrates a good baseline posture with encrypted communications and secure login forms. However, the absence of privacy and cookie policies, as well as missing security headers, represents compliance and security gaps. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and accessible platform. Overall, the website is professionally designed and functional for its purpose but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

B

Bureau Veritas Eesti

bureauveritas.ee

68

Bureau Veritas Eesti is a well-established branch of the global Bureau Veritas Group, specializing in certification, inspection, and sustainability services. The company offers a broad portfolio of services including ISO management system certifications, food safety, information security, and sustainability consulting, targeting businesses in Estonia. The website reflects a professional and consistent brand image with clear navigation and relevant content for its audience. Technically, the site is built on Drupal 10, uses modern consent management tools (Didomi), and integrates Google Analytics and Tag Manager for tracking. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security and incident response policies are not found. Privacy compliance is partially addressed via cookie consent but lacks a clearly accessible privacy policy page. Overall, the website demonstrates a mature digital presence with room for improvement in privacy transparency and incident response communication.

N

NOVOT Agentuur

novot.ee

56

NOVOT Agentuur is a well-established full-service marketing agency based in Estonia, founded in 2006. The company offers a broad range of marketing services including branding, website development, campaign management, social media, and media planning. Their website reflects a professional and consistent brand image, targeting businesses seeking comprehensive marketing solutions. The digital infrastructure is built on WordPress with modern plugins and tools such as Yoast SEO, Google Tag Manager, and CookieYes for privacy compliance. The site is mobile-optimized and demonstrates good SEO practices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business history. Overall, the website presents a trustworthy and professional digital presence.

L

Luuletus.ee

luuletus.ee

60

Luuletus.ee is a well-established Estonian online platform dedicated to poetry, offering a large collection of poems with daily updates. It targets Estonian poetry enthusiasts and writers, providing services such as poem publishing, sharing, user accounts, and curated collections. The platform is owned by Zone Media OÜ and has been operational since 2011, positioning itself as the largest Estonian poetry repository online. Technically, the website employs modern web technologies including HTTPS, Cloudflare CDN, Google Analytics, and lazy loading for images, delivering a good user experience with mobile optimization and clear navigation. Security-wise, the site enforces HTTPS and uses service workers but lacks some advanced security headers and a formal vulnerability disclosure policy. Privacy compliance is addressed with a visible cookie consent mechanism and a basic privacy policy aligned with GDPR requirements. Overall, the website demonstrates a solid business credibility and technical maturity with room for security enhancements.

E

Eesti Rahvusraamatukogu

digar.ee

40

DIGAR is a digital archive platform operated by the National Library of Estonia, providing access to a wide range of digitized cultural heritage materials including books, periodicals, images, and collections. The website targets researchers, students, historians, and the general public interested in Estonian history and culture. It serves as a national-level digital repository with a public service business model, offering structured search capabilities and curated collections. The platform is well-branded and consistent with its institutional identity. Technically, the website employs standard web technologies including JavaScript and integrates Google Analytics and Google Tag Manager for user tracking and analytics. The site is served over HTTPS with CSRF protection on forms, indicating a reasonable security baseline. However, it lacks advanced security headers and explicit privacy or cookie policies, which are important for compliance and user trust. Mobile optimization and accessibility are basic but functional, with room for improvement. From a security perspective, the site demonstrates good practices such as HTTPS and CSRF tokens but misses opportunities to enhance security posture through security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or blocking mechanisms were detected. The WHOIS data confirms the legitimacy and consistency of the domain registration, aligning with the website's governmental and cultural heritage role. Overall, DIGAR presents a trustworthy and professional digital archive service with good content quality and business credibility. To improve, it should implement comprehensive privacy and cookie policies, enhance security headers, and provide clear incident response and vulnerability disclosure information to strengthen user trust and compliance.

E

Eesti Noorteühenduste Liit

enl.ee

47

Eesti Noorteühenduste Liit (ENL) is a well-established non-profit umbrella organization founded in 2010 that unites youth associations and participation bodies across Estonia. The organization focuses on advocacy, youth participation, training, and international cooperation, positioning itself as a leading entity in the Estonian youth sector. The website reflects a professional and comprehensive digital presence with clear content, strong branding, and multilingual support. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance, accessibility, and SEO. Security posture is solid with HTTPS, cookie consent, and error reporting, though some security headers and formal policies could be enhanced. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media engagement.

H

Hannomal OÜ

veebispetsid.com

50

Hannomal OÜ operates a professional web development and e-commerce service business based in Estonia, with a strong market presence since 2011. The company offers a comprehensive suite of services including website creation, e-shop development, graphic design, programming, and content writing, primarily leveraging the WordPress platform. Their website reflects a mature digital presence with good SEO and user experience design. Technically, the site uses modern web technologies and integrates Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements such as enabling DNSSEC and adding security headers are recommended. Overall, the business demonstrates transparency and credibility with clear contact information and consistent branding.

E

Eduten Ltd.

eduten.com

65

Eduten Ltd. operates a leading digital math learning platform originating from Finland, combining Finnish educational excellence with gamification and AI technologies. The platform targets K-12 students, teachers, school leaders, and parents worldwide, offering a comprehensive content library and AI-driven learning analytics. It holds a strong market position supported by over 15 years of university research and international awards such as the UNESCO ICT for education prize and UNICEF special edtech award. Technically, the website employs modern JavaScript libraries and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though additional security headers and explicit security policies could enhance protection. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Overall, the website presents a professional, trustworthy, and user-friendly digital education platform.

K

Kodutütred

kodututred.ee

41

Kodutütred is a well-established Estonian youth organization affiliated with the Kaitseliit (Estonian Defence League), focusing on patriotic education and voluntary activities for girls aged 7 to 18. The website serves as an informational and engagement platform, showcasing news, events, organizational structure, and membership opportunities. The organization has a strong national presence with thousands of members and active participation across all counties in Estonia. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, FontAwesome, and Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Hosting and domain registration are consistent with the organization's location and purpose. From a security perspective, the site uses HTTPS and secure forms but lacks advanced security headers and DNSSEC, which could be improved. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulatory requirements.

T

Tervisekassa

tervisekassa.ee

64

Tervisekassa is the official Estonian national health insurance portal, providing information and services related to state health insurance, medical benefits, and healthcare access. The website targets insured individuals, employers, healthcare providers, and partners within Estonia. It offers comprehensive content on insurance coverage, medical services, reimbursements, and public health initiatives. The site is well-positioned as a government-backed service with a clear mission to facilitate healthcare access and information dissemination. Technically, the website is built on Drupal CMS, leveraging modern analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and Siteimprove. It employs Cloudflare for DNS and CDN services, ensuring good performance and security. Accessibility and mobile optimization are well addressed, with features like contrast toggling and skip links. Security posture is strong with HTTPS, cookie consent mechanisms, and bot protection via Google reCAPTCHA. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear privacy and cookie policies and GDPR-aligned consent management. Contact information is transparent, including official email and phone numbers, and social media presence is active on major platforms. Overall, the website demonstrates a mature digital infrastructure suitable for a public healthcare service, balancing usability, security, and compliance effectively.

Z

Zone Media OÜ

inimene.ee

45

Inimene.ee is an established Estonian health portal operated by Zone Media OÜ since 2010. It provides comprehensive health-related content including disease catalogs, symptoms, treatments, and health news. The site targets Estonian-speaking individuals seeking reliable health information and offers interactive features such as a question submission form answered by medical professionals. The business model relies on content provision combined with advertising partnerships, notably with Apotheka e-pharmacy. Technically, the site uses a modern CMS (Greativ), integrates multiple third-party analytics and advertising services, and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though it lacks some advanced headers and published incident response policies. Overall, the site is trustworthy and professionally maintained, with room for improvement in security transparency and direct contact information.

P

PetCity

petcity.ee

57

PetCity is a leading Estonian pet retail and veterinary service provider, operating a large e-commerce platform alongside physical stores and modern veterinary clinics in major cities such as Tallinn, Tartu, and Pärnu. The website is professionally designed, localized in Estonian, and targets pet owners primarily of cats and dogs. The business model integrates product sales with veterinary services, positioning PetCity as a comprehensive pet care provider in the Estonian market. Technically, the site leverages Magento as its e-commerce platform, enhanced with modern JavaScript frameworks and integrations such as Google Analytics, Google Tag Manager, Hotjar, and Google Translate for multilingual support. The site demonstrates good digital maturity with responsive design and accessibility considerations.

L

Laama

pixie.ee

38

Laama is a small Estonian digital agency specializing in web design, UX/UI design, branding, graphic design, front-end development, websites, and web applications. The website serves as a minimal portfolio and contact landing page, targeting businesses or individuals seeking digital design and development services. The company appears to have been founded around 2018, consistent with the domain registration date. Technically, the website uses standard web technologies including Google Analytics and Google Tag Manager for tracking, and Typekit for fonts. Hosting and domain registration are managed by Elkdata OÜ, a local Estonian registrar and hosting provider. The site is basic in design and content, with moderate performance and basic mobile optimization. SEO and accessibility features are minimal but present. From a security perspective, the site uses HTTPS as indicated by canonical URLs, but no security headers were detected in the provided data. There are no visible forms or inputs, reducing attack surface, but the absence of privacy and cookie policies indicates poor privacy compliance. No incident response or security policy information is available. The WHOIS data is consistent and legitimate, with no suspicious patterns. Overall, the website is functional but minimal, with moderate technical maturity and basic security posture. Strategic improvements in privacy compliance, security headers, and richer contact information would enhance trust and compliance.

V

Visit Harju

visitharju.ee

50

Visit Harju is the official tourism portal for Harju County, Estonia, providing comprehensive information on the region's natural beauty, cultural heritage, and leisure activities. The website targets tourists and visitors seeking to explore Harju's attractions, travel routes, and experiences. Managed by SA Harju Ettevõtlus- ja Arenduskeskus, it serves as a trusted regional resource with consistent branding and a clear focus on hospitality and cultural tourism. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, ensuring good SEO and user experience. The site is mobile-optimized and accessible, with moderate performance and integration of analytics tools like Google Analytics and Plausible. Security posture is solid with HTTPS, reCAPTCHA on forms, and no exposed sensitive data, though explicit security headers and policies are not fully documented. Privacy compliance is a notable gap, lacking visible privacy and cookie policies or consent mechanisms. Overall, the domain registration is consistent and legitimate, supporting the site's credibility as an official tourism portal.

T

Terviserajad

terviserajad.ee

43

Terviserajad is an established Estonian platform dedicated to promoting health trails and outdoor physical activities across the country. The website offers comprehensive information on trails, events, news, and seasonal campaigns to encourage community engagement and healthy lifestyles. It targets Estonian residents and visitors interested in fitness and nature exploration. The platform enjoys partnerships with major Estonian companies such as Merko, Eesti Energia, and Swedbank, enhancing its market position as a trusted national resource. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Analytics, Google reCAPTCHA v3, and Instagram Feed integration. The site is mobile-optimized with good SEO practices and uses HTTPS to secure communications. However, some security best practices like HTTP security headers are missing, and privacy compliance is incomplete due to the absence of privacy and cookie policies. From a security perspective, the site demonstrates a moderate security posture with encrypted connections and anti-spam measures but lacks published security policies and incident response contacts. No WAF or blocking mechanisms were detected, and no exposed sensitive data was found. The domain registration is consistent and long-standing, supporting the site's legitimacy. Overall, Terviserajad presents a professional and trustworthy online presence with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

The website 'Maardu 45' serves as a dedicated platform for celebrating the 45th anniversary of Maardu city in Estonia. It provides residents and visitors with information about the city's history, culture, events, and local government contacts. The site is positioned as a local government information portal aimed at community engagement and city promotion. Technically, the site leverages a modern tech stack including Alpine.js, jQuery, Leaflet for maps, and multiple analytics tools such as Google Analytics and Matomo, hosted likely by Telia Eesti AS. The website is mobile optimized and offers a good user experience with clear navigation and consistent branding. Security-wise, the site uses HTTPS and does not expose sensitive data, but lacks some security headers and formal policies such as privacy and cookie policies, which are important for GDPR compliance. The domain is very recently registered, which is somewhat unusual for a city site but may reflect a new dedicated event domain. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

Z

Zone Media OÜ

maardupanoraam.ee

39

Maardu Panoraam is a local news and information website serving the residents of Maardu, Estonia. It provides timely news, official announcements, event information, job postings, and messages from the mayor, targeting the local community. The website is built on WordPress CMS, leveraging common plugins such as WPBakery Page Builder and WPML for multilingual support. It uses Google Analytics and Tag Manager for visitor tracking and performance insights. The site is hosted under the domain registered by Zone Media OÜ, an Estonian registrar, aligning with the website's geographic focus. Technically, the website demonstrates a moderate level of digital maturity with responsive design, good SEO practices, and integration of modern web technologies. However, it lacks some advanced security measures such as DNSSEC and security headers, which could be improved to enhance protection against common web threats. The absence of privacy and cookie policies indicates a gap in compliance with GDPR and related privacy regulations, which is critical given the use of tracking technologies. From a security perspective, the site uses HTTPS and secure login forms but does not provide explicit security or incident response policies. No WAF or blocking mechanisms are detected, and no suspicious or malicious indicators are present. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening to reduce risk and improve user trust.

V

Viimsi Hoolekandekeskus

viimsihoolekandekeskus.ee

43

Viimsi Hoolekandekeskus is a local Estonian social care center established in 2021, consolidating day centers and social services for the Viimsi municipality community. The website provides information about their services, events, and contact options primarily in Estonian. Technically, the site is built on WordPress with popular plugins for events and page building, hosted under a reputable Estonian registrar. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though some security headers and policies are missing. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy for its local government/non-profit purpose.

N

Novian Eesti OÜ

volis.ee

49

VOLIS is a specialized electronic meeting and voting platform serving Estonian local governments, enabling virtual meetings, electronic voting, and public participation in municipal decision-making. The platform is supported by the Estonian Association of Cities and Municipalities and developed by Novian Eesti OÜ. The website presents a professional and consistent brand image with clear navigation and relevant content tailored to its government audience. Technically, the site uses legacy JavaScript libraries and Grails-based server-side rendering, with moderate performance and basic mobile optimization. Security posture is strengthened by ISKE certification and audit references, but outdated libraries and lack of modern security headers present risks. Privacy compliance is partial, with no cookie consent mechanism and limited GDPR indicators. Overall, the site is trustworthy and credible but would benefit from technical and compliance improvements.

Z

Zone Media OÜ

vaktsineeri.ee

63

vaktsineeri.ee is a public health information website focused on vaccination awareness and education in Estonia. It provides comprehensive information on immunization schedules, vaccine safety, travel vaccinations, and related news. The site targets the general Estonian population including parents, adults, and travelers, positioning itself as an official or semi-official government-affiliated resource. The business model is informational and supported by partnerships with Estonian health and government institutions. Technically, the site is built on Drupal 10 with modern web technologies, offering good mobile optimization and accessibility features. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

S

Synology Inc.

gofile.me

62

The analyzed page is an error page related to Synology's QuickConnect service, hosted under the domain gofile.me. The business behind the service is Synology Inc., a reputable technology company specializing in network-attached storage and related services. The page content is minimal and focused on troubleshooting connection issues, with no direct business or security policy information presented. The technical infrastructure includes AWS DNS hosting and JavaScript-based front-end components, with Google Analytics used for tracking. Security posture is moderate but could be improved by enabling DNSSEC, adding security headers, and publishing explicit security policies. Privacy compliance is basic, with a cookie policy and consent mechanism present but no privacy policy on this page. Overall, the domain registration is consistent and legitimate, with privacy protection justified for this business type.

I

Ida-Viru Ettevõtluskeskus AS

idaviru.ee

54

Ida-Viru Ettevõtluskeskus AS operates the website idaviru.ee, a regional tourism cluster portal promoting adventure and leisure activities in Ida-Virumaa, Estonia. The site targets tourists and families seeking diverse experiences including outdoor adventures, cultural sites, accommodation, and events. The business model focuses on tourism promotion and cluster partnership facilitation, positioning itself as a key regional information hub. Technically, the website is built on WordPress with Elementor and WooCommerce, optimized with WP Rocket, and uses Cloudflare DNS. It integrates modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, cookie consent implemented, and no critical vulnerabilities detected. However, the absence of explicit privacy policy and terms of service pages indicates room for compliance improvement. Overall, the website is professional, well-branded, and trustworthy, with good performance and user experience.