Security Directory

F

Forlle'd

forlle-d.com

54

Forlle'd appears to be a skincare brand with a website built on modern JavaScript frameworks such as Nuxt.js and Vue.js. The site includes product showcases and professional/scientific content related to skincare. The technical infrastructure is moderately modern with Google Analytics and Tag Manager integrated for tracking. However, the website lacks critical privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. The domain is well-established, registered since 2004 with a reputable registrar, indicating business stability. Security posture is weak due to missing headers and lack of explicit security policies. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

D

Devtailor

devtailor.com

59

Devtailor is a technology company specializing in turnkey software development services and white label products such as license plate recognition, facial recognition, and tvOS applications. Founded in 2015, the company targets businesses seeking scalable software solutions and innovative technology products. Their market position is that of a niche provider with a focus on quality and specialized offerings. Technically, the website is built on Angular 13 with server-side prerendering, uses modern tracking and analytics tools, and is hosted likely on AWS infrastructure. The site is mobile optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks published security policies, security headers, and incident response information. Privacy compliance is partial, with a cookie consent mechanism but no privacy policy or terms of service pages. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

T

Thulema

thulema.ee

39

Thulema is a well-established Estonian company specializing in the manufacturing and retail of ergonomic and modern office and public furniture. The company positions itself as a leading brand in Estonia, emphasizing human-friendly materials and innovative Nordic design. Their website reflects a medium-sized business with a clear focus on sustainability, as evidenced by their published carbon footprint report. The target audience includes businesses and institutions seeking quality workplace solutions. Technically, the website is built on WordPress with modern plugins and tracking tools, offering a good user experience and SEO optimization. Security posture is solid with HTTPS and nonce usage, though lacking some advanced security headers and explicit security policies. Privacy compliance is basic, with no visible cookie consent mechanism or GDPR-specific disclosures. Overall, the website is professional, trustworthy, and aligned with the company's business claims.

A

AKU Collective OÜ

aku.co

40

AKU Collective OÜ is a small, established design studio based in Tallinn, Estonia, specializing in branding, strategy, and creative solutions across various media. Founded in 2012, the company serves clients in culture, government, music, and other sectors, with a strong portfolio and multiple design awards. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress, uses modern JavaScript libraries like jQuery, and integrates Google Analytics and Tag Manager for tracking. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration is privacy protected but legitimate, with no suspicious patterns.

E

Eesti Kirjandusmuuseum

kirmus.ee

55

Eesti Kirjandusmuuseum is a well-established Estonian national scientific and cultural institution focused on managing important archives related to cultural history and folklore. The website serves a diverse audience including researchers, students, cultural enthusiasts, and the general public by providing access to archives, scientific projects, educational programs, exhibitions, and an online store. The institution holds a strong market position as a central cultural memory organization in Estonia. Technically, the website is built on Drupal 8 with modern libraries and tools, offering good mobile optimization, accessibility, and SEO. Security posture is solid with HTTPS and anonymized analytics, though security headers and explicit security policies could be improved. Overall, the site is professional, trustworthy, and content-rich, supporting the institution's mission effectively.

Evex.ge is the official website of Evex Clinics, a large healthcare network in Georgia established in 2014. The company provides a wide range of medical services including state healthcare programs, private insurance, and specialist consultations. The website is professionally designed, mobile-optimized, and offers clear navigation to services, doctors, clinics, and booking options. The business holds ISO 9001:2015 and TÜV AUSTRIA certifications, indicating a commitment to quality standards. Technically, the site uses modern JavaScript libraries and analytics tools, with HTTPS enabled and good SSL configuration. However, it lacks visible privacy and cookie policies, which impacts privacy compliance scores. Security headers are not detected, suggesting room for improvement in security posture. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

P

Pure Norwegian Seafood

pns.no

42

Pure Norwegian Seafood is a Norwegian family-owned seafood producer specializing in high-quality salmon products. The company emphasizes sustainability, quality assurance, and traceability, aiming to be a leading supplier for premium seafood markets. Their website reflects a professional and consistent brand image focused on natural purity and product excellence. Technically, the site uses modern tracking tools such as Google Analytics and Google Tag Manager, with images optimized via Imgix CDN. The site is mobile-optimized and SEO-friendly, though no explicit CMS or hosting provider is identified. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, but lacks visible security headers and detailed security policies. WHOIS data is unavailable due to Norid's privacy policies for .no domains, which is typical and justified for this business type. Overall, the website presents a trustworthy and credible business presence with room for improvement in security transparency and contact information availability.

B

Bestnet Group

tikitreiler.com

48

Bestnet Group is a medium-sized manufacturing company based in Estonia, specializing in metal industry services including trailer development, subcontracted metalworking, and environmentally friendly surface coatings. The company positions itself as a reliable partner with over 30 years of experience and significant factory space in Scandinavia and the Baltics. Their website is professionally designed, mobile-optimized, and uses modern web technologies such as WordPress, Bootstrap, and Google Analytics for tracking. Structured data and SEO practices are well implemented, enhancing their digital presence. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with no cookie consent mechanism despite active analytics tracking. Overall, the website reflects a credible and professional business with room for improvement in privacy and security transparency.

N

North Star

northstarshipping.co.uk

69

North Star is a UK-based marine infrastructure support company specializing in offshore energy sectors including renewables and conventional energy. The company offers a range of services such as offshore wind support vessels, emergency response, platform supply, patrol and research, and rescue and maintenance. Their market position is that of an established medium-sized player with decades of marine experience and a modern fleet. The website is professionally designed, mobile-optimized, and provides comprehensive compliance and contact information, indicating a mature digital presence. Technically, the website is built on Webflow CMS, leveraging modern web fonts, analytics, and consent management tools. Performance and accessibility are rated highly, with fast loading times and good SEO practices. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data reveals a domain registration anomaly: the domain www.northstarshipping.co.uk is reported as unregistered due to naming rules violation by Nominet UK. Despite this, the website content is accessible and professional, suggesting the domain may be a subdomain or alias. This discrepancy lowers the domain legitimacy score and warrants caution. Overall, North Star's website demonstrates a solid business and technical foundation with good security and privacy compliance. Strategic recommendations include enhancing security headers, clarifying domain registration status, and adding incident response information to further strengthen trust and compliance.

B

Brokeree Solutions

brokeree.com

64

Brokeree Solutions is a technology provider specializing in turnkey software solutions for retail brokers, focusing on enhancing trading platforms such as MetaTrader 4, MetaTrader 5, cTrader, and DXtrade. With over a decade of experience and a client base of hundreds of brokerages, the company offers products like liquidity bridges, PAMM systems, social trading platforms, and account management tools tailored for the forex brokerage industry. Their market position is solid, supported by a professional website, client logos, and active social media presence. Technically, the website is built on WordPress with modern integrations including Gravity Forms for data collection, Google Tag Manager, and various tracking pixels. Hosting and DNS services leverage Cloudflare, ensuring good performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Consent management is implemented via ConsentManager, indicating attention to privacy compliance. Security posture is good with HTTPS enforced, use of reCAPTCHA v3 on forms, and domain transfer protection. However, DNSSEC is not enabled, and some security headers are missing. There is no visible security policy or incident response information, which could be improved to enhance trust and compliance. No WAF or blocking mechanisms were detected, allowing full content access. Overall, Brokeree Solutions presents a trustworthy and professional online presence with room for improvement in privacy policy transparency and security best practices. Strategic enhancements in these areas would strengthen their compliance and security posture, supporting their business credibility and customer trust.

Metaprofit is an established Estonian training and consulting company specializing in organizational development, personnel training, and psychological services. With over 20 years of experience and a client base exceeding 500 organizations, it offers a wide range of personalized training programs and consulting services targeting both public and private sectors. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, it is built on WordPress with modern plugins and integrates analytics tools such as Google Analytics and Yandex Metrika. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

I

Indico

indicosys.com

57

Indico is a Norway-based company specializing in digital evidence capture, management, and analysis solutions, primarily targeting law enforcement and forensic professionals. The website is built on the Wix platform and integrates common analytics tools such as Google Analytics and Google Tag Manager. While the site provides basic information about its services, it lacks comprehensive business and security disclosures. The absence of WHOIS data raises concerns about domain legitimacy and trustworthiness. Security posture is moderate with HTTPS enabled but missing key security headers and policies. Privacy compliance is weak due to the lack of privacy and cookie policies. Overall, the site presents a basic digital presence with room for significant improvements in transparency, security, and compliance.

L

LenovoArvutid

lenovoarvutid.ee

43

LenovoArvutid is an Estonian e-commerce retailer specializing in business-class Lenovo ThinkPad laptops and related accessories. The website targets business customers and individual buyers seeking high-quality Lenovo laptops, offering products such as the ThinkPad X1 Carbon, T14, and P14 series. The business model focuses on online sales with additional services like leasing and installment payment options. The company has been operating since 2017 and maintains a consistent brand presence with a professional website design and clear navigation.

B

Bait Partner OÜ

baitpartner.eu

41

Bait Partner OÜ is a specialized provider of innovative medical technology solutions aimed at improving healthcare workflows through tailored hardware and software products. The company targets healthcare institutions such as hospitals and laboratories primarily in Europe, positioning itself as a niche B2B technology partner. The website is built on WordPress using the Avada theme and incorporates modern plugins and SEO tools, reflecting a moderate to high level of digital maturity. Security posture is strong with HTTPS and security headers implemented, though privacy compliance could be improved by adding cookie consent mechanisms and dedicated security policies. Overall, the site presents a professional and trustworthy image with clear contact information and client testimonials.

C

CostPocket

tsekk.ee

62

CostPocket is a medium-sized Estonian SaaS company specializing in digital expense management solutions for businesses and accounting professionals. Their platform offers AI-powered tools to digitize receipts, automate expense reporting, and integrate seamlessly with popular accounting software, positioning them as a key player in the Baltic financial technology sector. The website demonstrates a modern technical infrastructure using Vue.js and integrates multiple analytics and marketing tools, reflecting a mature digital presence. Security posture is strong with HTTPS, security headers, and Cloudflare DNS, though some improvements in DNSSEC and explicit security policies are recommended. Privacy compliance is basic, with cookie consent implemented but lacking explicit privacy and terms of service pages. Overall, the site is professional, trustworthy, and well-optimized, supporting a strong market position.

T

Tehnoplast AS

tehnoplast.ee

33

Tehnoplast AS is a leading plastic packaging manufacturer based in Estonia, serving primarily the Baltic and Scandinavian markets. With over 30 years of industry experience, the company specializes in producing high-quality HDPE bottles, canisters, and caps for chemical and food industries. Their business model focuses on manufacturing and providing comprehensive packaging solutions, supported by certifications such as ISO 9001 and ISO 22000, which underline their commitment to quality and safety. The website reflects a professional and consistent brand image, targeting business customers in relevant industrial sectors. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and SEO best practices. It uses Google Analytics and Tag Manager for tracking and is hosted by a reputable Estonian registrar. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, performance is moderate, and accessibility features are basic. From a security perspective, the site enforces HTTPS and uses secure forms but lacks visible security headers and published security policies. There is no evidence of a privacy or cookie policy, which is a compliance gap. No incident response or vulnerability disclosure information is provided, which limits transparency in security matters. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security transparency. Strategic improvements in these areas would strengthen user trust and regulatory adherence.

K

Kipwise Inc.

kipwise.com

66

Kipwise Inc. operates a SaaS platform focused on internal company wikis, knowledge management, and team enablement with AI-powered features such as knowledge suggestions and Slack auto-answering bots. The company targets a broad audience including remote teams, customer support, sales, marketing, HR, and product teams, positioning itself as a trusted solution with enterprise-grade support and integrations. Technically, the website is built on Webflow CMS, leveraging modern analytics and tracking tools like Segment, Google Analytics, Mixpanel, Amplitude, and FullStory, hosted via Cloudflare and AWS Cloudfront, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforced and domain protections in place, though improvements are recommended such as enabling DNSSEC and publishing formal security policies. Privacy compliance is partial, with a comprehensive privacy policy present but lacking a cookie consent mechanism. Overall, the website is professional, content-rich, and trustworthy, with minor gaps in privacy and security transparency.

Z

Zaproo

zaproo.com

71

Zaproo is a specialized eCommerce and custom web application development company focusing on Magento2 and Vue Storefront technologies. Positioned as a Magento Solution Partner and Vue Storefront Partner, Zaproo offers a range of services including UI/UX design, eCommerce development, digital marketing, custom development, DevOps support, and training. Their target audience primarily consists of businesses seeking tailored eCommerce solutions and digital marketing support. The website demonstrates a professional design with clear navigation and mobile responsiveness, reflecting a moderate level of digital maturity. Technically, the site leverages modern frameworks such as Vue.js and Nuxt.js for the frontend, integrated with Magento backend systems. It employs common analytics and marketing tools including Google Analytics, Google Tag Manager, and Facebook Pixel, alongside reCAPTCHA for form security. Performance is moderate with good mobile optimization, though accessibility features are basic. From a security perspective, the site uses HTTPS and includes reCAPTCHA to protect forms, but lacks explicit security headers and documented security policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Overall, while the website is professionally presented and technologically sound, the lack of WHOIS data and explicit privacy policy reduces its trust and compliance posture. Strategic improvements in security headers, privacy documentation, and domain registration transparency are recommended to enhance credibility and security.

D

Data Protected

lambda.ge

55

Lambda Gaming is a small technology company specializing in the development and publishing of retro and indie video games. Founded in 2022, the company targets gamers interested in nostalgic 8-bit style games and maintains an active online presence through its website, blog, and career opportunities. The business model focuses on direct engagement with its community and game distribution via digital platforms. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, hosted with Cloudflare DNS and secured with HTTPS. The site demonstrates good mobile optimization and moderate performance, with standard SEO and accessibility features. Security posture is solid with HTTPS enforcement and standard security headers, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy and cookie policies are comprehensive and GDPR compliant, with user tracking via Google Analytics and Facebook Pixel at a moderate level. Overall, the website is professional and trustworthy, with room for improvement in security transparency and accessibility compliance.

M

Moneyzen

moneyzen.eu

56

Moneyzen is an Estonian-based online lending and investment platform that offers a variety of personal loans and investment opportunities. The company positions itself as a transparent and empathetic financial intermediary connecting borrowers and investors. The website is professionally designed using WordPress and Elementor, featuring loan and investment calculators, clear navigation, and multilingual support. The business targets individuals seeking flexible loans and investors looking for peer-to-peer lending options. The platform has a clear market niche in Estonia's finance sector with a small company size and a consistent brand presence. Technically, the website employs modern web technologies including WordPress 6.8.1, Elementor 3.29.2, Yoast SEO, Google Tag Manager, Facebook Pixel, Hotjar, and reCAPTCHA for security and analytics. The site is mobile-optimized and SEO-friendly, though some security headers could be enhanced. Cookie consent mechanisms and privacy policies indicate good GDPR compliance. From a security perspective, the site uses HTTPS with good SSL configuration and implements standard best practices such as reCAPTCHA and cookie consent. However, explicit security policies and incident response information are not found, and security headers like CSP and X-Frame-Options are not explicitly detected. No vulnerabilities or exposed sensitive data were identified in the HTML content. Overall, Moneyzen presents a trustworthy and professional online financial service with solid technical infrastructure and privacy compliance. Strategic improvements in security headers and incident response transparency would further strengthen its security posture and user trust.

Bolt Technology OÜ operates a leading European mobility superservice platform offering ride-hailing, food and grocery delivery, car and scooter rentals, and business travel solutions. The company is well-positioned in the transportation and technology sectors with a large global footprint across 600+ cities and 50+ countries. Their digital presence is robust, leveraging modern web technologies such as Next.js and React, with strong SEO, mobile optimization, and accessibility features. The website demonstrates a high level of professionalism and branding consistency, supported by comprehensive privacy and cookie policies aligned with GDPR requirements. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not publicly detailed, representing an area for improvement. Overall, Bolt's website and digital infrastructure reflect a mature and trustworthy business with a strong market presence and good compliance practices.

H

Hala

hala.ai

62

Hala.ai is a technology company specializing in conversational AI platforms that integrate with major business software such as QuickBooks Online, IBM Watson, Microsoft Dynamics, and SAP. The company offers digital assistants and enterprise-grade conversational interfaces designed to streamline business processes and improve operational efficiency. Positioned as a niche B2B SaaS provider, Hala.ai targets business users and enterprises seeking to automate routine tasks and unify software interactions under a single conversational UI. The company is small-sized, founded in 2017, and based in Estonia. Technically, the website is built on modern web technologies including Ghost CMS, Tailwind CSS, and JavaScript frameworks, hosted on AWS infrastructure. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Analytics are implemented via Google Analytics and Google Tag Manager, with additional marketing tracking through Albacross. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a published security policy or incident response information. DNSSEC is not enabled, which is a recommended improvement. The WHOIS data is transparent and consistent with the website content, though the registrant uses a personal Gmail address, which is common for small businesses but slightly reduces trust. Overall, Hala.ai presents a professional and trustworthy online presence with a solid technical foundation and good privacy compliance. Strategic improvements in security headers, DNSSEC, and incident response transparency would enhance its security posture and trustworthiness further.

S

Servaali Oy

servaali.com

53

Servaali Oy is a well-established Finnish company specializing in the import and distribution of quality alcoholic and non-alcoholic beverages. Operating since 1995 and owned by Olvi Oyj, it holds a strong market position as one of Finland's leading alcohol importers. The website reflects this with clear branding, product categories, and a professional presentation targeting HoReCa professionals and consumers interested in premium drinks. Technically, the site is built on WordPress with modern frameworks such as Bootstrap and jQuery, and it employs Cloudflare DNS and Google Analytics for performance and tracking. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

L

Linde

linde.in

71

Linde in India operates as a subsidiary of Linde plc, a global leader in industrial gases and engineering solutions. The website serves as a corporate portal targeting industrial clients in India, showcasing Linde's presence and offerings in the energy sector. The business model focuses on B2B services supplying industrial gases and engineering expertise. The site reflects a strong market position with consistent branding and enterprise-level scale. Technically, the website employs modern analytics and monitoring tools such as Google Analytics, Google Tag Manager, and Microsoft Application Insights, indicating a mature digital infrastructure. The use of HTTPS and security headers demonstrates a good security baseline, although some areas like accessibility and privacy compliance could be improved. The site is mobile-optimized and SEO-friendly, supporting good user experience. From a security perspective, the site enforces HTTPS and includes key security headers, reducing common web vulnerabilities. However, the absence of explicit privacy and cookie policies, as well as lack of visible contact information for security incidents, represents compliance and transparency gaps. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional and trustworthy but would benefit from enhanced privacy disclosures and clearer contact channels to improve compliance and user trust. Strategic improvements in these areas will strengthen the security posture and regulatory alignment.

T

Tanel Teemusk

teemusk.com

47

The website teemusk.com represents a seasoned freelance iOS developer and technical team lead, Tanel Teemusk, showcasing his portfolio, resume, and contact information. The site targets businesses and clients seeking expert iOS development and technical leadership services. The business model is freelance consultancy with a strong emphasis on technical expertise and project leadership. The website is professionally designed using WordPress with Divi Builder and SEO optimizations, providing a good user experience and clear navigation. Social media presence is leveraged for contact and trust building. Technically, the site employs modern web technologies including HTTPS, Google Analytics, and Google reCAPTCHA for security and analytics. The CMS is WordPress, with plugins enhancing SEO and form functionality. Performance is moderate with good mobile optimization. However, some security best practices such as DNSSEC and security headers are missing, which could be improved. Security posture is solid with HTTPS and anti-bot measures, but lacks published security or privacy policies, which impacts privacy compliance. No direct company emails or phone numbers are disclosed, relying on contact forms and social media. The domain registration data is consistent with the business claims, showing a long-standing domain without privacy protection, supporting legitimacy. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

G

Gabriel Scientific OÜ

sleepangel-medical.com

46

Gabriel Scientific OÜ operates the SleepAngel Medical website, offering innovative medical barrier bedding products featuring patented PneumaPure® filter technology. Their products are certified as Class I Medical Devices in the EU, registered with the FDA, and approved by the SFDA, positioning them as a niche innovator in healthcare infection control. The company targets healthcare facilities and distributors, emphasizing sustainability and hygiene. The website is professionally designed using WordPress with Divi and Elementor, featuring multimedia content and clear navigation. Technical infrastructure includes modern web technologies, Google Analytics, and Facebook Pixel for marketing insights. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site reflects a trustworthy and credible business with room for enhanced privacy and security disclosures.

R

RangeForce

rangeforce.com

72

RangeForce is a cybersecurity training platform specializing in cloud-based cyber ranges and solo labs designed to empower security operations centers (SOCs) and threat hunters. The company positions itself as a provider of realistic, team-focused training environments that use real tools and networks to close technical and soft skills gaps. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting enterprise security teams. Technically, the site leverages HubSpot CMS, Google Analytics, and modern JavaScript libraries to deliver a responsive and engaging user experience. Security posture is solid with HTTPS enforced and privacy compliance evident through cookie consent mechanisms and detailed privacy policies. However, the absence of WHOIS data and explicit security headers slightly reduces trustworthiness. Overall, RangeForce presents as a credible and professional cybersecurity training provider with room for improvement in transparency and security best practices.

F

FB Asset Management

fbassets.eu

46

FB Asset Management is a small Estonian investment fund management company established in 2013. The company manages investment funds licensed by the Estonian Financial Supervision Authority and targets professional and experienced investors with funds such as FB Opportunity Fund and FB Corporate Bond Fund. The website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable technical infrastructure. Google Analytics is used for visitor tracking, but no cookie consent mechanism or privacy policy is present, representing a compliance gap. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks security headers and incident response information. Overall, the website is professional and trustworthy but should improve privacy compliance and security transparency.

Pridea is a Dutch technology consultancy specializing in intrapreneurship and innovation management. They provide methodologies, platforms, and workshops to help organizations harness employee ideas and realize them effectively. Their market position is that of a niche player focused on bottom-up innovation facilitation within organizations. Technically, the website is built on the Weebly platform using standard web technologies including jQuery, Google Analytics, and video.js, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and uses an outdated jQuery version. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking scripts. Business credibility is strong with clear contact information, social media presence, and trust signals such as case studies and podcasts. Overall, the website is professional and trustworthy but could improve in security and privacy compliance.

HugeDomains operates as a reputable domain marketplace specializing in premium domain name sales, offering flexible payment plans and guarantees such as a 30-day money back policy. The website RunwayBpo.com is presented as a domain for sale with clear pricing and purchase options, targeting individuals and businesses seeking premium domains. The company has been established since 2005 and maintains a consistent brand presence with customer testimonials and trust signals. Technically, the website employs modern JavaScript libraries, Google Analytics, and Google reCAPTCHA Enterprise for security and analytics, with a cookie consent mechanism in place to comply with privacy regulations. Security posture is strong with HTTPS enforced and secure forms, though some security headers are not explicitly detected. WHOIS data for the hugedomains.com domain is unavailable, likely due to privacy protection or query limitations, but the overall business credibility remains high. Contact is available via phone and a contact form, though no direct company emails are published.

AS Eesti Pagar is a well-established Estonian bakery company founded in 2010, specializing in a wide range of bread, pastry, and frozen bakery products. The company serves retail consumers and export markets, positioning itself as a key player in the Estonian bakery sector. Their website reflects a professional and consistent brand image with clear product categorization and marketing efforts. Technically, the website is built on WordPress using modern frameworks and libraries such as Foundation, jQuery, and Slick Slider, with integrated marketing and analytics tools including Google Analytics, Facebook Pixel, and Mailchimp. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS with a cookie consent mechanism compliant with GDPR, but lacks explicit security policies and some security headers. WHOIS data confirms the domain's legitimacy and long-term presence, matching the business profile. Overall, the website demonstrates a mature digital presence with room for improvement in security transparency and incident response readiness.

O

OÜ MyFinancier

myf.ee

42

MyFinancier is a small Estonian company providing an intelligent personal finance assistant service that helps users analyze cash flows and gain detailed insights into asset distribution. The website is professionally designed using WordPress with Elementor and optimized for SEO and mobile devices. It targets Estonian individuals seeking financial management tools. The company maintains a consistent brand presence with active social media profiles on Facebook, LinkedIn, and YouTube. The domain is registered with Elkdata OÜ since 2018, aligning with the business age and location. Technically, the site uses modern web technologies, including Google Analytics and Facebook Pixel for analytics and marketing, with a compliant cookie consent mechanism.

P

Puidukoda OÜ

puidukoda.eu

49

Puidukoda OÜ is a medium-sized Estonian manufacturing company specializing in high-quality planed softwood timber products, founded in 1997 and part of the French Groupe Rose. The company operates modern automated production lines with a capacity exceeding 225,000 m³ annually and offers additional finishing services such as painting and impregnation. Their market position is strong in Europe, supported by a professional website with multilingual support and e-commerce capabilities. Technically, the website is built on WordPress with WooCommerce and employs modern SEO and privacy compliance tools, including GDPR cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the company demonstrates a professional digital presence aligned with its business operations and compliance requirements.

S

Servodata Group

servodata.net

59

Servodata Group is a well-established IT services and solutions provider operating in the Czech Republic for over three decades. The company specializes in delivering professional business IT solutions including Red Hat, Open Source, Microsoft Licensing, JBoss, and IT training. They have a strong market position supported by multiple industry awards and a professional online presence. Technically, the website is built on WordPress with a modern tech stack including jQuery and Google Analytics, offering good mobile optimization and SEO. Security posture is solid with HTTPS and reCAPTCHA usage, though lacking some security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

Meidron is a small Estonian company founded in 2011, offering IT support and consulting services, EU funding project management, and environmental consulting. The company targets businesses and organizations requiring specialized consulting and support services. The website is simple and functional, providing basic business information and contact details, including email, phone, and LinkedIn profile. The market position appears niche and regional with a focus on professional service delivery. Technically, the website uses basic HTML, CSS, and JavaScript with Google Analytics for tracking. Hosting appears to be on Oracle Cloud infrastructure. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. No CMS or frameworks are detected, indicating a custom or static site. From a security perspective, the domain is well-registered with a long history and transfer protection. However, the site lacks DNSSEC, visible HTTPS enforcement, and security headers. No privacy or cookie policies are present, and no consent mechanisms are implemented, indicating GDPR compliance gaps. The use of Google Analytics without cookie consent further impacts privacy compliance. No incident response or vulnerability disclosure information is provided. Overall, the website presents a moderate risk profile with good business credibility but requires improvements in security posture and privacy compliance to enhance trust and regulatory adherence.

M

Mediapark

singleton.ee

58

Mediapark is an established digital agency specializing in modern web development, mobile app creation for Android and iOS, UI/UX design, testing, and support services. With a domain age dating back to 1995 and a broad international presence including offices across Europe and Asia, Mediapark serves a diverse clientele including notable brands such as Red Bull and Vodafone Zambia. The company positions itself as a one-stop-shop for digital product development, targeting businesses seeking scalable and high-performance digital solutions. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager. The site is mobile-optimized and demonstrates good design and navigation quality. Hosting and DNS services leverage Cloudflare, enhancing performance and security. However, DNSSEC is not enabled, and security headers are absent, indicating room for security improvements. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA v3 for form protection, but lacks published security policies and incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which could expose the company to regulatory risks. Contact information is available primarily via contact forms and office addresses, with no direct emails or phone numbers publicly listed. Overall, Mediapark presents a professional and credible digital presence with a mature business history and solid technical foundation. Strategic enhancements in privacy compliance, security headers, and DNS security would further strengthen their security posture and regulatory adherence.

Mehiläinen Oy is a leading Finnish healthcare service provider offering comprehensive medical and health services across Finland. The website presents a professional and user-friendly interface, targeting Finnish residents seeking quality healthcare. The company operates both physical clinics and digital health services, positioning itself strongly in the Finnish healthcare market with a long history dating back to 1909. The website is built on modern technologies including React and Gatsby, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced and multiple security headers present, though there is room to improve transparency by publishing a dedicated security policy and incident response contacts. Overall, the site demonstrates a mature digital presence with good privacy compliance and trustworthy business information.

P

Pontos

pontos.fi

54

Pontos is a Finnish family-owned investment company focusing on selective investments both domestically and internationally. The website positions the company as an established player in the investment sector with a clear business model centered on strategic asset allocation. The digital presence is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Google Analytics, Hotjar, and Cookiebot for GDPR-compliant cookie management. The site demonstrates good technical maturity with HTTPS enforcement and a responsive design, although some advanced security headers are missing. Privacy compliance is well addressed through a comprehensive cookie consent mechanism and a detailed privacy policy. However, explicit contact information and terms of service are not prominently available, which could be improved for better business credibility and user trust. Overall, the website reflects a professional and trustworthy investment firm with room for enhanced security and transparency features.

Z

Zlick Ltd

zlick.it

49

Zlick Ltd operates a specialized paywall software service designed for WordPress subscription sites, targeting content creators, bloggers, podcasters, and media corporations. The company positions itself as an easy-to-use, high-conversion paywall solution that requires minimal technical setup, emphasizing a 10-minute integration and no need for developers. Their business model is subscription and transaction-based, with integrated CRM and analytics tools to help customers optimize monetization. The website reflects a professional and consistent brand image with clear messaging and trust indicators such as customer earnings and testimonials. Technically, the website is built on WordPress using Elementor and Yoast SEO, leveraging modern JavaScript libraries and Google Analytics for tracking. The site demonstrates good SEO optimization, mobile responsiveness, and moderate performance. Security best practices are observed with HTTPS enforcement and security headers, though some privacy compliance aspects like cookie consent are lacking. From a security perspective, the site shows a solid posture with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies and incident response information, which could be improved to enhance trust and compliance. The WHOIS data aligns well with the website's claims, showing consistent registration details and no privacy protection, supporting legitimacy. Overall, Zlick's website is a credible and professional platform with a strong business focus and good technical implementation. Enhancements in privacy compliance and security transparency would further strengthen its position and user trust.

S

Sparta.com domain name is for sale. Inquire now.

sparta.com

52

The website www.sparta.com currently serves as a domain sales landing page advertising the premium domain name Sparta.com for purchase. It targets domain investors and businesses seeking a strong, memorable brand domain. The site offers a contact form for potential buyers to make offers but lacks direct company contact details or business entity information. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, Font Awesome, Google Fonts, Google Analytics, and Google reCAPTCHA to provide a responsive and secure user experience. However, no CMS or hosting provider information is evident. Security posture is moderate with HTTPS enabled and spam protection via reCAPTCHA, but no security headers or explicit privacy and cookie policies are present. WHOIS data is unavailable, indicating the domain is likely unregistered or expired, which aligns with the site’s purpose as a domain sales landing page but reduces trustworthiness for operational business use. Overall, the site is professionally designed but minimal in business and compliance information, resulting in a moderate risk profile.

R-Systems is an Estonian software development company specializing in hydrography and spatial data software solutions, founded in 1989. The company offers services including hydrographic survey software, spatial data processing, and sensor integration, targeting sectors such as military, air surveillance, logistics, and GIS. The website reflects a small, niche technology business with a long operational history but limited online presence and content depth. Technically, the website uses basic HTML, CSS, and JavaScript with Google Analytics for tracking. The site lacks modern frameworks or CMS and shows basic performance and SEO optimization. Mobile optimization and accessibility are minimal, indicating room for improvement in digital maturity. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response details are provided, limiting transparency and trust. The use of Google Analytics without a consent mechanism further impacts privacy compliance. Overall, the website presents a moderate risk profile with no critical security issues detected but several compliance and usability gaps. Strategic improvements in privacy policies, security headers, mobile optimization, and contact transparency are recommended to enhance trust and compliance.

F

Fineltec Oy

fineltec.fi

50

Fineltec Oy is a well-established electronics manufacturing services (EMS) provider founded in 2003, specializing in contract manufacturing and assembly of electronics, electro-mechanics, and wiring harnesses. The company serves diverse industries including energy, industrial automation, instrumentation, defence, safety, building automation, and medical devices, positioning itself as a preferred partner with strong quality and environmental certifications such as ISO 9001, ISO 14001, and ISO 13485. Their business model focuses on providing comprehensive manufacturing solutions from prototypes to life-cycle services, supported by a subsidiary production site in Estonia. Technically, the website is built on WordPress with modern frameworks like Bootstrap and enhanced by SEO and analytics tools including Yoast SEO, Google Analytics, and Google Tag Manager. The site is mobile-optimized, has good navigation, and employs cookie consent mechanisms to comply with privacy regulations. Performance is moderate with a good balance of content richness and technical implementation. From a security perspective, the site enforces HTTPS with a solid SSL configuration but lacks DNSSEC and some recommended security headers. No vulnerabilities or exposed sensitive data were detected. The company demonstrates adherence to recognized quality and environmental standards but does not publicly provide an incident response or vulnerability disclosure policy, which could be improved. Overall, Fineltec presents a credible and professional online presence with strong business legitimacy and moderate to good security posture. Strategic recommendations include enhancing DNS security, adding security headers, publishing incident response contacts, and formalizing vulnerability disclosure to further strengthen trust and compliance.

C

Constructive

constructive.net.au

67

Constructive is a specialist recruitment consultancy operating in Australia since 2003, focusing on the Built Environment and Infrastructure sectors. The company offers permanent and contract recruitment solutions, franchise opportunities, and tailored hiring services to employers and jobseekers. The website reflects a professional and consistent brand with clear navigation and relevant content. Technically, the site uses modern web technologies including service workers, Google Analytics, and Elfsight widgets, hosted likely by Identity Digital Australia. Security posture is good with HTTPS and captcha-protected forms, but lacks explicit security headers and published privacy or cookie policies. WHOIS data is incomplete but registrar information aligns with Australian domain administration, supporting legitimacy. Overall, the site is functional and trustworthy but could improve compliance and security transparency.

B

Briti Eesti Kaubanduskoda

becc.ee

50

The British-Estonian Chamber of Commerce (Briti Eesti Kaubanduskoda) operates as a membership organization facilitating business connections and trade between Estonia and the United Kingdom. Established in 2010, it serves a niche market of businesses engaged in bilateral commerce, providing networking opportunities and member support. The website reflects a professional and consistent brand image with clear business focus and relevant content for its target audience. Technically, the website is built on WordPress with WooCommerce and BuddyPress plugins, leveraging modern web technologies such as jQuery, Google Analytics, and Google Tag Manager for analytics and user engagement tracking. The site is hosted under the domain registrar Zone Media OÜ, with a stable and long-standing domain registration since 2010. Performance and mobile optimization are adequate, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection, alongside a cookie consent mechanism compliant with GDPR principles. However, explicit security headers are not detected, and there is a lack of published security policies or incident response contacts. Privacy and terms of service pages are missing, representing compliance gaps. Overall, the website presents a trustworthy and credible business presence with room for improvement in privacy compliance and security best practices. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

R

Respo Haagised AS

respo.ee

46

Respo Haagised AS is a well-established Estonian company founded in 1990, specializing in the manufacturing and sale of trailers, accessories, and spare parts. It holds a market leader position in Estonia and is a significant player in the Baltic and Scandinavian regions. The company operates a modern e-commerce platform with multi-language support and offers innovative services such as 24/7 self-service trailer sales points. The website reflects a mature digital infrastructure built on Magento, integrating advanced tracking and marketing tools like Google Analytics, Facebook Pixel, and Hotjar. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, user-friendly, and trustworthy, supporting the company's business credibility and market presence.

T

Tallinna Tehnikaülikool (TalTech)

gi.ee

64

Tallinna Tehnikaülikool's Geoloogia instituut is a reputable academic unit specializing in geology, mineral resources, and mining engineering. It serves as a key educational and research hub within Estonia, offering undergraduate, graduate, and doctoral programs, alongside active research groups and modern laboratories. The institute maintains a strong presence in the academic community through events, publications, and collaborations. Technically, the website employs modern frameworks such as Next.js and integrates multiple analytics and marketing tools while ensuring GDPR-compliant cookie consent. Security posture is strong with HTTPS enforcement and bot protection mechanisms, though explicit security policies and incident response information are not publicly detailed. Overall, the site reflects a professional, trustworthy, and well-maintained digital presence aligned with its institutional mission.

Addenda OÜ is an Estonian-based professional training and consulting company established in 2010. The company offers a wide range of training courses, including construction, occupational safety, accounting, and legal topics, both in-person and via an e-learning platform called Addenda e-akadeemia. The website targets Estonian professionals and organizations seeking continuing education and compliance training. The business maintains a stable market position with a comprehensive course catalog and partnerships with local organizations. Technically, the website uses a custom CMS with legacy JavaScript libraries such as jQuery 1.11.1, and integrates common analytics and advertising tools like Google Analytics and Facebook Pixel. The site is mobile optimized and SEO friendly but lacks modern security headers and updated libraries. Security posture is moderate with HTTPS enabled but missing explicit security policies and headers. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy practices.

F

Fort Aero

fort.aero

51

Fort Aero is a specialized aviation service provider focused on corporate jet management, sales, acquisition, maintenance, and charter services. Established since 1997, the company positions itself as a trusted and experienced player in the business aviation sector, primarily serving corporate jet owners and operators. The website reflects a professional and consistent brand image with comprehensive service descriptions and multiple contact channels. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and secure forms, though some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. WHOIS data is unavailable due to privacy protection, which is common for this business type but slightly reduces trust. Overall, Fort Aero presents a credible and professional online presence with room for improvement in privacy and security transparency.

Z

Zone Media OÜ

depile.ee

51

Depile.ee is an established Estonian e-commerce website specializing in beauty, health, and wellness products. The site offers a wide range of branded products including hair care, nail care, body care, massage items, and related accessories. The business targets both consumers and professionals in the beauty sector, primarily serving the Estonian market. The company behind the domain is Zone Media OÜ, with a domain age dating back to 2010, indicating a mature online presence. Technically, the website is built on Magento 2, leveraging modern web technologies such as RequireJS, jQuery, and FontAwesome. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site demonstrates good mobile optimization and SEO practices, with a clear navigation structure and responsive design. Performance is moderate, with room for optimization. From a security perspective, the website enforces HTTPS and includes several security headers, contributing to a good security posture. Cookie consent is implemented with a detailed mechanism allowing users to manage preferences, which aligns with GDPR requirements. However, the absence of a publicly accessible privacy policy and terms of service pages represents a compliance gap. No critical vulnerabilities or exposed sensitive data were detected. Overall, Depile.ee presents a professional and trustworthy e-commerce platform with solid technical foundations and security practices. To enhance compliance and trust, it is recommended to publish comprehensive privacy and terms of service documents and improve accessibility features. Regular security audits and updates to third-party scripts will further strengthen the site's security posture.

N

Nordic Hunting Club

nordichuntingclub.com

55

Nordic Hunting Club is a specialized outfitter offering guided hunting experiences in Estonia, focusing on big game and migratory birds. The company positions itself as a high-quality service provider with over 15 years of experience, targeting hunters interested in trophy hunting in Northern Europe. The website is professionally designed using WordPress and the Avada theme, with SEO optimized via Yoast plugin and enriched with structured data. The technical infrastructure includes modern JavaScript libraries and analytics tools, providing a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data is missing, raising concerns about domain legitimacy and registration consistency. Overall, the site is functional and professional but requires improvements in privacy compliance and domain registration transparency.