Security Directory

U

UAB „Novameta“

novameta.lt

46

UAB „Novameta“ is a Lithuanian company specializing in manufacturing and supplying professional kitchen equipment primarily targeting commercial kitchens, food retail stores, and large trading networks. The company positions itself as a significant player in the European market with export activities and a portfolio of implemented projects and products. Their website reflects a medium-sized manufacturing and retail business with a clear focus on quality and customer service. Technically, the website is built on OpenCart CMS using a traditional tech stack including jQuery, Bootstrap, and Font Awesome, with integration of Google Analytics and Google reCAPTCHA for security and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and bot protection, though it lacks some advanced security headers and uses an outdated jQuery version which could be a risk. Privacy compliance is partial; while a cookie consent banner is implemented, no explicit privacy policy or terms of service pages are found, which is a compliance gap. Overall, the website is professional and trustworthy but could improve in privacy transparency and security hardening. The absence of WHOIS data limits domain trust assessment but no suspicious indicators are present on the site itself.

U

UAB "Ideo LT"

spartireklama.lt

40

The website www.spartireklama.lt represents a Lithuanian small business named UAB "Ideo LT" specializing in advertising production and visual advertising services. Their offerings include printing, graphic design, advertising installation, and promotional items targeted at businesses seeking to enhance their brand visibility. The site is professionally designed with clear navigation and good mobile optimization, reflecting a moderate level of digital maturity. Technically, the site is built on WordPress and employs modern marketing and analytics tools such as Google Tag Manager, Google Analytics, and Facebook Pixel. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, the absence of security headers and privacy/cookie policies indicates room for improvement. WHOIS data is unavailable due to query limits, limiting domain trust analysis. Overall, the site is functional and credible but would benefit from enhanced privacy compliance and security best practices.

M

Makita Oy

makita.fi

59

Makita Oy is a well-established Finnish company specializing in the manufacturing and retail of battery-powered and electric power tools. The website serves as a comprehensive portal for product information, customer support, authorized dealer location, and warranty services, targeting both professional and consumer markets in Finland. The site demonstrates a mature digital presence with a custom CMS, modern JavaScript libraries, and integration of major analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy in Finnish. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although additional security headers could enhance protection. The domain registration details align well with the business identity, supporting high legitimacy and trust. Overall, the website is professional, user-friendly, and trustworthy, with room for improvement in explicit security policy disclosures and direct contact information visibility.

L

Lemora

lemora.lt

65

Lemora is a Lithuanian-based e-commerce business specializing in the wholesale and retail distribution of building materials. The website offers a wide range of construction products such as mineral wool, roofing materials, gypsum boards, diffusion membranes, OSB, and Neopor. The company targets construction professionals and retail customers within Lithuania, emphasizing fast delivery within one working day. The business operates on a PrestaShop platform, indicating a digital maturity level consistent with small to medium-sized e-commerce operations. The website is professionally designed with good content relevance and user experience, optimized for mobile devices. Security-wise, the site uses HTTPS and implements a cookie consent mechanism via Cookiebot, but lacks visible security headers and detailed privacy or security policies. WHOIS data is unavailable due to query limits, limiting domain legitimacy assessment. Overall, Lemora presents as a legitimate small business with room for improvement in security and privacy transparency.

Lietuvos nacionalinis dramos teatras is a prominent Lithuanian cultural institution specializing in theatrical performances, educational programs, and cultural events. The website serves as a comprehensive platform for event calendars, ticket sales, and information dissemination to theatre enthusiasts and the general public. The organization holds a strong market position as a national drama theatre with a focus on cultural enrichment and community engagement. Technically, the website employs a traditional tech stack including jQuery, Google Analytics, Hotjar, and Cookiebot for analytics and privacy compliance. While the site is functional and professionally designed, some technologies like jQuery are outdated, suggesting opportunities for modernization. Security posture is solid with HTTPS enforcement, reCAPTCHA integration, and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data due to query limits limits domain registration insights, but the overall legitimacy is supported by consistent branding and official cultural status. Privacy policies and GDPR compliance are well addressed, reflecting a mature approach to data protection.

C

Contrarian Ventures

cventures.vc

64

Contrarian Ventures is a venture capital firm specializing in constructing and supporting technology companies. Their website presents a professional and consistent brand image, targeting startups and entrepreneurs seeking investment and business development assistance. The site is built on WordPress using the Divi theme, incorporating modern JavaScript libraries and analytics tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies, and no consent mechanisms are present. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

Primprim is a small Lithuanian creative design studio specializing in branding, logos, publications, packaging, illustrations, objects, and web design services. The website presents a basic portfolio and contact information primarily targeting Lithuanian-speaking clients. The technical infrastructure relies on older technologies such as jQuery 2.1.0 and includes Google Analytics and Google Tag Manager for user tracking. No modern CMS or advanced frameworks are detected. Security posture is minimal with no visible HTTPS confirmation or security headers, and no privacy or cookie policies are present, indicating low compliance with GDPR and other privacy regulations. The absence of WHOIS data due to query limits restricts domain legitimacy verification, but the website content aligns with a small local business profile. Overall, the site is functional but lacks advanced security, privacy, and technical maturity.

O

OfficeDay

officeday.lt

65

OfficeDay operates a professional e-commerce platform focused on office supplies, business gifts, school supplies, cleaning and hygiene products, and food and beverages primarily serving the Lithuanian market. The website demonstrates a broad product catalog and clear navigation, targeting businesses and consumers seeking comprehensive office-related products. The technical infrastructure is based on the OXID eShop CMS platform, utilizing common web technologies such as jQuery, Google Analytics, Facebook Pixel, and Hotjar for analytics and marketing, with cookie consent mechanisms in place to comply with GDPR requirements. Security posture is solid with HTTPS enforced and no visible exposed sensitive data, though security headers are not evident in the provided content. The absence of WHOIS data limits domain registration insights, but the website's professional presentation and contact information support its legitimacy. Overall, the site is well-positioned in its retail niche with moderate to good technical and security maturity.

Terra IT is a Lithuanian IT company specializing in business management software solutions tailored for various industries such as transport, logistics, manufacturing, and services. Their product portfolio includes ERP systems, project management, transport management, equipment maintenance, and personnel task management systems. The company targets businesses of all sizes within Lithuania, offering both onsite and remote services. The website is professionally designed, mobile responsive, and provides comprehensive information about their services and products. Technically, the website is built on Joomla CMS with Bootstrap 4 framework, integrating modern tools such as Google Analytics, Google Tag Manager, reCAPTCHA, Tawk.to live chat, and Hotjar for analytics and user interaction. The site uses HTTPS with good SSL configuration and employs security best practices like CSRF tokens and CAPTCHA on forms. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site demonstrates a solid baseline with no visible vulnerabilities or exposed sensitive data. Privacy compliance is addressed with a cookie consent banner and a privacy policy page in Lithuanian, indicating GDPR awareness. Contact information is clear and consistent with business operations, enhancing trustworthiness. WHOIS data is unavailable due to query limits, but the domain appears legitimate with privacy protection likely justified for this business type. Overall, Terra IT's website reflects a credible, professional IT service provider with a good security posture and compliance awareness. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure could further enhance trust and resilience.

N

NARVESEN

narvesen.lt

34

Narvesen.lt represents a well-established Lithuanian retail convenience store brand offering fresh coffee, snacks, press publications, transport tickets, and other services. The website is professionally designed with good SEO and mobile optimization, targeting Lithuanian consumers seeking quick and convenient shopping experiences. The business model focuses on retail convenience with a strong market presence in Lithuania. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Analytics, Google Tag Manager, and Cookiebot for analytics and privacy compliance. Security posture is moderate with HTTPS implied but lacking explicit security headers and detailed security policies. Cookie consent is implemented comprehensively, reflecting GDPR awareness, though no explicit privacy policy or terms of service pages were found in the provided content. Overall, the site is functional and professional but could improve in security and compliance documentation. WHOIS data was unavailable due to query limits, limiting domain trust assessment.

Europa Group Hotels operates a regional hospitality business with multiple hotels and related services across Lithuania, Latvia, and Romania. Their website presents booking options, hotel information, and special offers targeting travelers seeking accommodation and hospitality services in these regions. The business model focuses on hotel accommodation, conference centers, restaurants, and spa services, positioning Europa Group Hotels as a medium-sized player in the Baltic and Romanian hospitality market. Technically, the website relies on outdated technologies such as Flash and an old version of jQuery, with visible server-side errors indicating poor error handling and potential security risks. The site uses HTTPS but lacks modern security headers and cookie consent mechanisms, which impacts privacy compliance. The WHOIS data is missing or unavailable, raising concerns about domain legitimacy and trustworthiness. Overall, the website requires significant technical and security improvements to enhance user experience, security posture, and compliance.

F

Finance Engineering

fengineering.lt

27

Finance Engineering is a Lithuania-based company specializing in financial engineering services, primarily targeting financial institutions and insurance companies. Their offerings include actuarial services, product management, insurance reporting, business intelligence solutions, and risk management. The website content is bilingual (English and Lithuanian) and focuses on presenting their specialized services and solutions. The company positions itself as a niche service provider in the finance and insurance sectors with a small business size profile. Technically, the website is built on an outdated Joomla 1.5 CMS platform and includes deprecated Flash content, which negatively impacts modern usability and security. The site lacks HTTPS, which is a critical security shortfall. Google Analytics and Google Tag Manager are used for user tracking, but no privacy or cookie policies are present, indicating poor privacy compliance. The site navigation is clear, but overall design and content quality are basic. From a security perspective, the absence of HTTPS and security headers, combined with deprecated technologies, exposes the site to potential risks. No contact information or incident response channels are provided, limiting transparency and trust. WHOIS data is unavailable due to query limits, preventing full domain legitimacy verification. Overall, the site demonstrates moderate business credibility but requires significant technical and security improvements to meet modern standards.

B

BSS IT, UAB

bss.biz

56

BSS IT, UAB is a Lithuanian technology company specializing in ERP business management software solutions. Their offerings include document management, payroll and personnel management, accounting, real estate management, trade management, ERP/CRM, and pension and investment fund management systems. The company has an established market presence since 2002 and targets businesses seeking comprehensive ERP solutions. The website reflects a professional and consistent brand image with clear product information and client references. Technically, the website is built on WordPress using the Flatsome theme and integrates modern technologies such as Bootstrap, jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel. Performance optimizations like WP Rocket and lazy loading are implemented, resulting in fast loading times and good mobile responsiveness. SEO and structured data usage are well executed, enhancing discoverability. From a security perspective, the site uses HTTPS with a good SSL configuration and employs some best practices. However, it lacks certain security headers like Content-Security-Policy and does not provide explicit security policies or incident response contacts. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is detected. Contact information is comprehensive and clearly presented, supporting business credibility. Overall, the website is trustworthy and professionally maintained, with room for improvement in security headers, privacy compliance, and incident response transparency. The domain's WHOIS data supports legitimacy with a long registration history and consistent country presence.

A

AGMI Traffic & Lighting

agmi.nl

57

AGMI Traffic & Lighting is a well-established Dutch company specializing in traffic signage, support structures, and tunnel safety equipment, with a strong focus on sustainability and quality. Founded in 1997, it holds multiple certifications including ISO 9001 and Cradle to Cradle, positioning itself as a leading authority in its sector. The website reflects a professional and consistent brand image targeting municipalities and infrastructure sectors. Technically, the site employs modern JavaScript libraries and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear cookie consent and privacy policies. Overall, the website is trustworthy and credible with no blocking or WAF interference detected.

W

Wealth Dynamix

wealth-dynamix.com

66

Wealth Dynamix is a UK-based company specializing in CRM, Client Lifecycle Management (CLM), and onboarding solutions tailored for private banks and wealth management firms. Established in 2012, the company positions itself as a specialist provider helping financial institutions grow assets under management (AuM), streamline operations, and deliver innovative client services. The website reflects a professional B2B software provider with a clear focus on the finance sector. Technically, the site is built on WordPress with Elementor, integrating modern marketing and analytics tools such as HubSpot, Google Analytics, and Lead Forensics. Cookie consent and privacy compliance mechanisms are robustly implemented using CookiePro and OneTrust, indicating a good level of GDPR awareness. Security posture is solid with HTTPS enforced and no obvious vulnerabilities detected, although DNSSEC is not enabled and security headers are not evident, suggesting room for improvement. Overall, the website is well-designed, mobile-optimized, and professionally maintained, but lacks explicit privacy policy and terms of service pages, as well as direct contact details such as emails or phone numbers. Strategic recommendations include publishing comprehensive privacy and security policies, enabling DNSSEC, adding security headers, and providing clear incident response contacts to enhance trust and compliance.

E

EMPIRIJA

empirija.lt

44

EMPIRIJA is a Lithuanian company specializing in the production, sale, installation, and servicing of modern POS (Point of Sale) systems and fiscal cash register blocks. Established in 1991, the company has grown to become one of the leading providers in the Baltic region, serving major retail chains, service companies, and sales points. Their offerings include technologically advanced POS systems tailored for various sectors such as retail, hospitality, sports clubs, and entertainment centers. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site leverages WordPress CMS with integrations of Google Analytics and Tag Manager for user behavior tracking and marketing insights. Security posture is strong with HTTPS enforced and privacy policies clearly communicated, although additional security headers and incident response information could enhance their security maturity. Overall, EMPIRIJA demonstrates a credible and professional business with a solid market position and trustworthy online presence.

Servolux is a large agro-industrial holding based in Belarus, operating since 1999 with a diversified portfolio including poultry breeding, meat production, dairy farming, compound feed production, retail, and R&D. The company holds a leading market position in Belarus and the CIS region, serving both local consumers and international clients in the HoReCa sector. The website reflects a mature digital presence built on modern technologies such as Next.js and integrates multiple analytics and marketing tools. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published policies. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms. Contact information is clearly provided, but no dedicated security or incident response contacts are found. Overall, the website is professional and trustworthy, though improvements in privacy and security transparency are recommended.

N

Nunner

nunner-logistics.com

72

Nunner is a logistics company offering a broad range of transport and supply chain services including road, rail, air, ocean freight, warehousing, and 4PL/LLP solutions. The company emphasizes optimizing value streams with AI-powered logistics and sustainability initiatives. The website is professionally designed using WordPress and Elementor, featuring comprehensive navigation and content relevant to their industry sectors. Technical infrastructure includes modern analytics and marketing tools, with HTTPS enforced and reCAPTCHA protecting forms. However, some security headers are missing, and no explicit privacy or terms of service pages were found, indicating room for compliance improvements. The absence of WHOIS data reduces transparency and trust, though the website content supports legitimacy. Overall, the site presents a solid digital presence with moderate risk due to incomplete domain registration information.

U

UAB LATAVA

latava.lt

46

UAB LATAVA operates as a Lithuanian real estate agency specializing in brokerage services for selling and renting various property types including apartments, houses, and land plots. The company targets individuals and businesses within Lithuania, particularly in Kaunas and Vilnius. Their website offers property listings, valuation services, and consultation to facilitate real estate transactions. The business model is focused on commission-based brokerage and advisory services within the local real estate market. Technically, the website employs a traditional jQuery-based stack with plugins such as Chosen for enhanced select inputs and Lightbox for image display. It integrates Google Analytics and Facebook SDK for tracking and social media engagement. The site is served over HTTPS, indicating a secure transport layer, but lacks advanced security headers and cookie consent mechanisms. Performance is moderate with good mobile responsiveness and basic accessibility features. From a security perspective, the site demonstrates fundamental protections such as HTTPS and no visible exposure of sensitive data. However, the absence of security headers, cookie consent, and incident response information suggests room for improvement in compliance and security posture. The lack of WHOIS data due to query limits reduces confidence in domain registration transparency, though the website content and contact information appear legitimate and consistent. Overall, the website is functional and professional with a moderate risk profile. Strategic improvements in security headers, privacy compliance, and transparency would enhance trust and reduce potential vulnerabilities.

K

KPMS

kpms.lt

41

KPMS is a well-established communication agency operating primarily in the Baltic region with offices in Tallinn, Riga, and Vilnius. The company offers a range of services including message design, content creation, and change management, leveraging 25 years of experience. Their website presents a professional image with clear contact information and a multilingual interface targeting Estonian, Latvian, Lithuanian, and English-speaking audiences. Technically, the site uses common web technologies such as jQuery, Google Analytics, Facebook Pixel, and Google Tag Manager, indicating a moderate level of digital maturity. The website is accessible, mobile-optimized, and SEO-friendly, though accessibility features could be improved. Security posture is basic with HTTPS enabled but lacks visible security headers and explicit privacy or cookie policies, which are compliance gaps. Overall, the site is trustworthy but would benefit from enhanced privacy compliance and security best practices.

C

Cardinity

cardinity.lt

60

Cardinity is a licensed payment institution based in Lithuania, operating since 2007, providing online payment processing services primarily for e-commerce merchants across Europe. The company offers a comprehensive suite of payment solutions including international payments, recurring billing, one-click payments, and mobile payments, supported by PCI DSS certification and registration with VISA Europe and MasterCard International. The website is professionally designed, well-structured, and optimized for mobile users, reflecting a mature digital presence. Technically, the site employs modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and Google Tag Manager, alongside security measures like HTTPS and Google reCAPTCHA to protect user interactions. Privacy and cookie policies are clearly presented with GDPR compliance, enhancing user trust. However, WHOIS data is unavailable due to query limits, limiting domain age and registrant verification. Overall, Cardinity demonstrates a strong security posture and business credibility with room for improvement in publishing explicit security policies and incident response contacts.

A

AIAI architects

aiaiarchitects.lt

62

AIAI architects is a small Lithuanian architecture and interior design firm specializing in creative interior solutions for offices, clinics, stores, cafes, restaurants, and residential homes. The company targets businesses and individuals primarily in Vilnius, Lithuania, offering tailored interior design services to enhance business success and lifestyle. The website is built on Hostinger's platform using modern technologies such as the Astro framework and Google Analytics for visitor tracking. The site is well-designed, mobile-optimized, and provides clear navigation and contact information, including email and phone. However, it lacks essential privacy and cookie policies, which poses compliance risks. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but it lacks security headers and vulnerability disclosure mechanisms. Overall, the domain appears legitimate despite unavailable WHOIS data due to query limits, and the business presents a professional online presence.

O

Open Circle Capital Fund

opencirclecapital.lt

39

Open Circle Capital Fund is an early stage venture capital firm specializing in investments in ICT, robotics, and high-tech companies primarily in Lithuania and surrounding regions. The fund targets startups with initial revenues and high growth potential, led by experienced entrepreneurs. Their business model focuses on providing capital along with strategic support including fundraising assistance and business development. The website presents a professional image with detailed portfolio listings and team profiles, indicating a credible market position within the early stage tech investment sector. Technically, the website is built on WordPress with common plugins such as Contact Form 7 and video background features. It uses HTTPS with Google reCAPTCHA v3 for form security and Google Analytics with IP anonymization for user tracking. However, some outdated libraries like jQuery 1.12.4 are used, which could pose security risks. The site is mobile optimized and has good navigation and content structure. From a security perspective, the site employs HTTPS and reCAPTCHA but lacks several important HTTP security headers and uses an outdated JavaScript library. No privacy or cookie policies are explicitly found, which may impact GDPR compliance. The WHOIS data is unavailable due to query limits, but the website content and linked domains suggest a legitimate and professional operation. Overall, the website is functional and professional but could improve security posture and privacy compliance to enhance trust and reduce risk.

A

Ardanuy Ingeniería, S.A.

ardanuy.com

43

Ardanuy Ingeniería, S.A. is a well-established Spanish engineering consultancy specializing in infrastructure sectors including railways, urban transport, energy, roads, and architecture. Founded in 1992, the company has a strong market presence with over 1,800 projects completed worldwide and significant annual revenues. Their website reflects a professional and consistent brand image targeting clients seeking comprehensive engineering and project management services. The business model focuses on consulting, design, and construction supervision with international reach. Technically, the website is built on a modern tech stack including Bootstrap, jQuery, and various UI and analytics tools, hosted by Nominalia Internet SL. The site is mobile-optimized and provides a good user experience, although accessibility and SEO could be further enhanced. The use of ASP.NET technology is indicated by form structures and hidden fields. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks DNSSEC and explicit security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with privacy and cookie policies available. Contact information is primarily via a contact form, with no direct emails or phone numbers visible. Social media presence on LinkedIn and YouTube supports trust. Overall, the website demonstrates a solid business credibility and technical foundation with room for security and privacy improvements. The domain registration data supports the legitimacy and maturity of the business. Strategic recommendations include enhancing DNS security, implementing security headers, and expanding privacy and incident response disclosures.

Programmers of Vilnius (UAB "Programuotojų artelė") is a Lithuania-based small software development company specializing in Python web applications using frameworks such as Django, Pyramid, and Zope Toolkit. The company offers consulting and custom software development services to clients primarily in Europe, Australia, and the US. Their website presents a professional image with client logos and testimonials, indicating a niche market position focused on Python-based web solutions. Technically, the website uses a modern Python-centric tech stack and includes Google Analytics for visitor tracking. The site is built with valid HTML and CSS and has a clear navigation structure, though mobile optimization and accessibility are basic. No CMS or hosting provider details are evident. Security best practices are partially implemented; however, no security headers or HTTPS enforcement details are visible in the provided data. From a security and compliance perspective, the site lacks visible privacy, cookie, or terms of service policies, and no vulnerability disclosure or incident response information is provided. WHOIS data is unavailable due to query limits, limiting domain registration trust verification. The site uses Google Analytics without a cookie consent mechanism, indicating potential GDPR compliance gaps. Overall, the website is functional and professional but would benefit from enhanced security headers, privacy compliance measures, and transparent domain registration data to improve trust and security posture.

H

HELIOS GROUP

helios.lt

45

Helios Group is a Lithuanian real estate company specializing in the development, management, leasing, and sale of commercial, administrative, and residential properties primarily in Vilnius, Kaunas, and Klaipėda. The company presents itself as a medium-sized regional player with a focus on high-quality real estate projects. The website is professionally designed using WordPress and incorporates modern SEO and analytics tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and secure forms, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data due to query limits reduces transparency but the website content and contact information support legitimacy. Overall, the site is functional and trustworthy with room to enhance privacy compliance and security best practices.

Aksa Akrilik Kimya Sanayii is a leading manufacturer specializing in acrylic fibers, holding the position as the world's largest and Turkey's sole producer in this sector. Established in 1971, the company has a strong market presence supported by numerous certifications and awards, reflecting its commitment to quality and sustainability. The website targets industry professionals, investors, and potential employees, providing comprehensive corporate, sustainability, and investor relations information. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and FontAwesome, hosted on Microsoft Azure DNS infrastructure. The site is mobile-optimized with good navigation and content quality, although some accessibility features are basic. Analytics tools such as Google Analytics and Google Tag Manager are used for user tracking at a moderate level. From a security perspective, the site uses HTTPS and domain locking mechanisms but lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. No critical vulnerabilities or blocking mechanisms were detected, indicating a generally secure posture. Overall, the website is professional and trustworthy, with a well-established domain and consistent WHOIS data. Strategic recommendations include enhancing privacy compliance with cookie consent, implementing security headers, and publishing incident response and vulnerability disclosure policies to strengthen security and compliance posture.

B

Brandmaster

brandmaster.pl

53

Brandmaster is a Polish marketing agency specializing in branding, digital design, social media management, content creation, performance marketing, and public relations. The agency positions itself as a community of experienced specialists delivering strategic and creative marketing solutions to help brands grow. Their website reflects a professional and modern digital presence with a portfolio of projects and client testimonials, indicating a solid market position in the media sector. Technically, the site is built on Webflow with integration of popular analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Hotjar, demonstrating digital maturity. Security posture is good with HTTPS enforced and anti-duplicate form submission logic, but lacks some security headers and explicit policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve transparency and compliance documentation.

A

APPL Industries Limited

applindustries.com

46

APPL Industries Limited is a well-established Indian manufacturer specializing in polymer compounds for automotive, appliances, electrical, and other industrial applications. The company boasts nearly three decades of experience and is positioned as the largest polymer compounder in India and the second largest in Asia, with a significant production capacity. Their business model focuses on manufacturing and exporting high-quality polymer compounds, supported by R&D and strategic joint ventures with international partners. The website reflects a professional digital presence with clear business information and client references. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, jQuery, and LinkedIn integration, indicating a moderate level of digital maturity. The site is mobile-optimized with good SEO practices, although accessibility features are basic. Performance is moderate, with room for improvement in technical infrastructure and security hardening. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is provided, which limits transparency and preparedness. The absence of WHOIS domain registration data raises concerns about domain legitimacy and trustworthiness, impacting overall risk assessment. Overall, while the business and website content are credible and professional, the missing domain registration data and limited security disclosures suggest caution. Strategic improvements in security policies, privacy compliance, and domain verification are recommended to enhance trust and reduce risk.

U

UAB Paspara

paspara.com

49

UAB Paspara is a medium-sized technology company specializing in SAS software solutions, consulting, and technical support across Lithuania, Latvia, and Estonia. The company holds official partnership status with SAS Institute and maintains certifications including ISO 9001:2015 and ISO/IEC 27001:2013, underscoring its commitment to quality and security. The website reflects a professional digital presence with good content quality and user experience, targeting business clients requiring advanced data warehousing and analytics services. Technically, the site is built on WordPress with modern JavaScript libraries and enforces HTTPS, though some security headers are missing. Privacy compliance is addressed with a cookie consent banner and a comprehensive privacy policy. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which impacts overall trustworthiness.

E

Europos socialinio fondo agentūra

esf.lt

51

Europos socialinio fondo agentūra is a Lithuanian government agency responsible for managing and implementing projects funded by the European Social Fund. The agency focuses on social inclusion, education, social innovation, civil rights, and international cooperation. It serves Lithuanian residents and stakeholders involved in social and educational development. The website is professionally designed, content-rich, and well-structured, providing clear information about the agency's activities, contact details, and news updates. The presence of official registration data and active social media accounts supports its legitimacy. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Slider Revolution, and WPML for multilingual support. It uses HTTPS with good SSL configuration and includes cookie consent mechanisms compliant with GDPR. The site demonstrates good mobile optimization and accessibility features, although some security headers are not detected and could be improved. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the lack of WHOIS data due to query limits restricts full domain trust verification. The site uses Google Analytics for user tracking with moderate privacy compliance. Overall, the website presents a trustworthy and professional digital presence for a government agency. Strategic recommendations include enhancing security headers, publishing explicit security policies or incident response contacts, and performing regular plugin vulnerability audits to maintain a strong security posture.

C

CRAFT bearings JSC

craft-bearings.com

51

CRAFT bearings JSC is a Lithuania-based manufacturer and distributor specializing in industrial, automotive, and agricultural bearings. The company positions itself as a top-quality European bearing factory with extensive stock and global distribution across 90 countries. Their services include manufacturing, quality control via an in-house laboratory, testing, and developed logistics for on-time global delivery. The website is professionally designed with multilingual support and comprehensive downloadable resources, reflecting a mature business model focused on manufacturing and wholesale distribution. Technically, the website employs a modern tech stack including jQuery, Google Analytics, Facebook Pixel, Hotjar, and Google Tag Manager, with frameworks such as fullPage.js and Isotope enhancing user experience. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Performance is moderate, with rich multimedia content including video backgrounds. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, no explicit security headers were detected, and there is no published security or incident response policy. The WHOIS data is missing, which raises some concerns about domain registration transparency. Overall, the security posture is good but could be improved by adding security headers and formal policies. The overall risk is moderate; the business appears legitimate and professional, but the lack of WHOIS data and some missing security best practices suggest areas for improvement. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and verifying domain registration details to improve trust and compliance.

C

Creston

creston.lt

46

Creston is a Lithuanian real estate company specializing in property brokerage and related services. The website targets local buyers, sellers, and investors, offering services such as property sales, purchase assistance, and career opportunities in real estate. The company maintains a professional online presence with consistent branding and relevant content tailored to its market segment. Technically, the website is built on WordPress using Bootstrap and integrates common analytics and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar. The site is secured with HTTPS and employs Google reCAPTCHA to protect forms from abuse. However, there is a lack of explicit privacy and cookie policies, and no visible security headers, which are areas for improvement. The WHOIS data is unavailable due to query limits, but no suspicious indicators are present in the website content, suggesting legitimacy. Overall, the site demonstrates a moderate to good level of digital maturity and security posture.

1

1stDibs

1stdibs.com

63

1stDibs is a premier online marketplace specializing in luxury vintage, antique, and contemporary furniture, jewelry, art, watches, and fashion. Founded in 2000 by Michael Bruno, it connects discerning buyers with vetted professional sellers worldwide, offering global shipping and guarantees such as authenticity and money-back. The platform is well-established with a strong market position in the luxury e-commerce sector. Technically, the website employs modern web technologies including React, GraphQL, and integrates multiple analytics and marketing tools such as Google Analytics, Google Tag Manager, and Pepperjam. The site is performant, mobile-optimized, and accessible, providing an excellent user experience. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities, though explicit security headers and incident response policies could be more transparent. The absence of public WHOIS data reduces domain transparency but does not detract significantly from the overall trustworthiness given the professional presentation and business maturity. Strategic recommendations include enhancing security header visibility, publishing incident response contacts, and considering a security.txt file to improve vulnerability disclosure transparency.

A

Aquila Racing

aquilaracingcars.com

49

Aquila Racing is a small Danish company specializing in the design and manufacture of racing cars, targeting motorsport enthusiasts and racing teams. Their website presents a professional image with a focus on their key products such as the Synergy, Adamo, and CR1 Sports GT racing cars. The technical infrastructure is based on WordPress with common plugins for SEO and analytics, indicating a moderate level of digital maturity. The site is HTTPS secured and includes cookie consent mechanisms, but lacks visible privacy policies and security headers, which are areas for improvement. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness, impacting the overall risk profile. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and incident response policies, and clarifying domain registration status to improve trust and compliance.

T

Three Cubes

tryskubai.lt

65

Three Cubes is an educational company specializing in creating scalable Minecraft-based lessons for schools, teachers, and after-school activities. The company leverages the immersive Minecraft: Education Edition platform to deliver gamified learning experiences that engage students and enhance educational outcomes. Recognized nationally and in Europe for its innovative approach, Three Cubes serves a growing community of over 30,000 students and 300 schools, positioning itself as a niche leader in game-based education within Lithuania. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to educators and institutions. Technically, the website employs modern JavaScript libraries such as Splide.js for UI components and integrates marketing and analytics tools including Google Analytics and MailerLite. Hosted by HOSTINGER operations, UAB, the site uses HTTPS but lacks advanced DNS security features like DNSSEC and some recommended security headers, indicating room for improvement in security hardening. The site is mobile-optimized and SEO-friendly, contributing to a positive user experience. From a security perspective, the site implements GDPR-compliant cookie consent mechanisms and maintains privacy and cookie policies, but lacks explicit security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent and legitimate, with no suspicious patterns. Overall, the security posture is moderate but could be enhanced by adding DNSSEC, security headers, and a vulnerability disclosure policy. The overall risk assessment is low with no critical issues detected. Strategic recommendations include improving DNS security, enhancing HTTP security headers, publishing a security policy, and expanding accessibility features to strengthen compliance and trust. These steps will support the company’s growth and reinforce its reputation as a secure and trustworthy educational service provider.

3

3plogistics

3pleuro.com

40

3plogistics is a Denmark-based third-party logistics provider specializing in comprehensive freight and warehouse services including seafreight, airfreight, roadfreight, project logistics, and rail logistics. The company positions itself as a reliable partner dedicated to going the extra mile for clients, partners, and employees. Their market presence is supported by multiple related domains and a professional website showcasing their service portfolio and regional offices. Technically, the website is built on WordPress with modern frameworks and plugins, offering good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security policies and security headers. WHOIS data is unavailable, which slightly impacts trust but does not negate the professional presentation and operational transparency evident on the site. Overall, the company demonstrates a mature digital presence suitable for its industry and target audience.

V

VaultSpeed

vaultspeed.com

63

VaultSpeed is a technology company founded in 2019, specializing in data product automation platforms aimed at enterprise clients. Their platform supports advanced analytics and GenAI initiatives, positioning them as a leader in scalable data delivery solutions. The website reflects a professional and modern digital presence with a focus on B2B services in the technology sector. Technically, the site leverages modern JavaScript libraries, Google Tag Manager, and Cookiebot for consent management, and is likely powered by Craft CMS. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS and domain transfer protections, but lacks explicit security policies and some security headers. Privacy compliance is partially addressed via cookie consent but lacks a visible privacy policy or terms of service. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

A

AB Pieno žvaigždės

pienozvaigzdes.lt

56

AB Pieno žvaigždės is a large Lithuanian dairy company specializing in the production and retail of natural dairy products. Positioned as one of the largest and most modern dairy processors in the Baltic region, the company targets consumers primarily in Lithuania and neighboring Baltic countries. Their business model includes both consumer retail and B2B ingredient solutions. The website reflects a professional and consistent brand presence with clear business and contact information, supporting their market position. Technically, the website is built on the PrestaShop CMS platform and uses common web technologies such as jQuery, Google Analytics, and YouTube APIs. The site is mobile-optimized with good SEO practices and moderate performance. Privacy and cookie policies are implemented with user consent mechanisms, indicating a mature approach to data protection compliance. From a security perspective, the site enforces HTTPS and shows no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policy or incident response information and could improve by adding security headers and a vulnerability disclosure policy. The absence of WHOIS data limits domain registration verification, but the website content and business details appear legitimate and consistent. Overall, the website demonstrates a solid digital presence with good security and privacy practices, though improvements in transparency around security policies and domain registration details would enhance trust and compliance.

N

Novian Group

algoritmusistemos.lt

64

Novian Group is a well-established IT services company operating primarily in Lithuania and the Baltic region, with over 30 years of experience. The company offers a broad range of IT solutions including software development, digitalization, and IT infrastructure management, targeting businesses and public sector organizations. Their market position is strengthened by multiple subsidiaries and international project experience. Technically, the website is built on WordPress with modern plugins and analytics tools, demonstrating good digital maturity and performance. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers could be improved. Privacy compliance is strong with a comprehensive cookie policy and GDPR adherence. However, the lack of WHOIS data limits domain trust verification. Overall, the website is professional, user-friendly, and trustworthy, supporting Novian's business credibility.

I

INTERAUTOMATIKA UAB

interautomatika.lt

44

Interautomatika UAB is a Lithuanian company specializing in the supply of industrial automation components and solutions. The company offers a wide range of products including sensors for temperature, pressure, level, and flow measurement, as well as equipment for liquid and gas analysis. Positioned as a professional B2B supplier, Interautomatika serves industrial clients with competitive pricing and customized automation solutions. The website reflects a mature digital presence with multilingual support and clear business information. Technically, the site is built on Magento CMS with a modern tech stack including jQuery, Bootstrap, and various marketing and analytics integrations. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though additional security headers and explicit security policies could enhance trust. The absence of WHOIS registrant data is due to EURid privacy policies and does not detract from the site's legitimacy. Overall, the company demonstrates a professional and trustworthy online presence suitable for its industrial market segment.

I

InfoEra

infoera.com

44

InfoEra is a Baltic-region IT engineering and software solutions provider with over two decades of experience. The company offers integrated hardware and software solutions, software development, training, and support services. It holds authorized partnerships with major software vendors such as Autodesk and operates offices in Lithuania, Latvia, and Estonia. The website reflects a professional and consistent brand presence targeting specialized IT markets in the Baltic states. Technically, the site is built on WordPress with common plugins and includes Google Analytics and reCAPTCHA for security and analytics. Security posture is moderate with HTTPS enabled and reCAPTCHA on forms, but lacks DNSSEC and security headers. Privacy compliance is basic with a cookie consent banner but no privacy policy page. Contact information is comprehensive and transparent, supporting business credibility. Overall, the site is functional and professional but could improve in privacy and security practices.

G

Galio group

galio.lt

59

Galio group is a real estate development company focused on delivering new apartments and office spaces primarily in Vilnius, Lithuania, and also operating in Latvia. The company positions itself as a leading developer of business centers in the Baltic region, emphasizing quality, sustainability, and innovative living and working spaces. Their website reflects a mature digital presence with comprehensive project information, news updates, and a strong emphasis on sustainability certifications such as BREEAM. Technically, the site is built on WordPress with modern tracking and analytics tools including Google Analytics, Facebook Pixel, Hotjar, and Adform, indicating a data-driven approach to user engagement and marketing. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data limits full domain trust verification but the professional presentation and detailed content suggest a legitimate and established business. Overall, the website is well-optimized for SEO, mobile-friendly, and provides clear contact information, supporting a positive user experience and business credibility.

S

SwO.lt

swo.lt

43

SwO.lt is a Lithuanian-based online magazine specializing in fashion, art, music, and cultural lifestyle content. It targets a niche audience interested in contemporary style and cultural trends, offering articles, digital magazine issues, and newsletters. The website is built on WordPress and integrates common web technologies such as jQuery, Nivo Slider, and social media SDKs. It maintains a moderate digital maturity with basic mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some outdated JavaScript libraries and missing security headers suggest room for improvement. The absence of WHOIS data limits full domain legitimacy verification, but the site shows no suspicious indicators and maintains consistent branding and contact information. Overall, SwO.lt presents as a credible small media business with a focus on cultural content.

B

Better Day

betterdayhealth.com

45

Better Day is a healthcare technology company specializing in providing an all-in-one medical management platform that includes electronic health records (EHR), practice management software, revenue cycle management, and specialty-specific consultations. The company targets healthcare providers, practice managers, and patients, aiming to simplify workflows and improve clinical and administrative efficiency. The website reflects a small-sized, niche provider with a consistent brand and good content quality, supported by customer testimonials and a recognized certification badge from the Drummond Group.

PROGEAR is a Lithuanian e-commerce retailer specializing in military, tactical, and outdoor leisure equipment. The website offers a broad range of products including clothing, footwear, equipment, and accessories targeted at both professional and amateur users interested in active outdoor lifestyles and military-grade gear. The company positions itself as a niche specialist within Lithuania, providing professional-grade products through an online platform. Technically, the website is built on a CMS platform likely OpenCart, utilizing Bootstrap, jQuery, and several third-party libraries for UI and analytics. The site is secured with HTTPS and implements a Content Security Policy, but uses an outdated jQuery version which may pose security risks. Privacy and cookie policies are not clearly presented, indicating potential compliance gaps. Contact information is clearly displayed, enhancing business credibility. Overall, the site is functional and professional but could improve in security and privacy compliance aspects.

B

BAA Training

baatraining.com

65

BAA Training is an established aviation training organization founded in 2015, offering a wide range of training services including pilot training, cabin crew training, and type rating courses. The company operates internationally with subsidiaries in Lithuania, Spain, France, Vietnam, and India, targeting individuals and airlines seeking professional aviation training. The website is built on WordPress and employs modern web technologies and SEO practices, providing a good user experience with clear navigation and mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic, with a cookie policy and consent mechanism present but no explicit privacy or terms of service policies found. Overall, the website is professional and trustworthy, with room for enhanced privacy and security transparency.

B

Biomapas

biomapas.com

63

Biomapas is a healthcare-focused service provider specializing in clinical research, regulatory affairs, pharmacovigilance, and medical information services. The company targets pharmaceutical and biotech firms seeking outsourcing solutions to accelerate clinical trials and optimize drug development. The website presents a professional image with clear service offerings and a consistent brand identity. Technically, the site is built on WordPress using the Divi theme, integrating modern analytics and marketing tools such as Google Analytics, Google Tag Manager, and Zoho SalesIQ for visitor engagement and tracking. The site is mobile-optimized and demonstrates good SEO practices. From a security perspective, the website uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and formal security policies or incident response contacts. No vulnerability disclosure or security.txt files were found, which could be improved to enhance trust. The absence of WHOIS registration data is a notable concern, as it raises questions about domain legitimacy despite the active and professional website presence. Overall, the website is functional, well-designed, and serves its business purpose effectively. However, the lack of transparency in domain registration and absence of key compliance documents like privacy policy and terms of service reduce its trustworthiness. Strategic improvements in security posture and compliance documentation are recommended to strengthen the company's digital credibility and risk management.

S

Sapu

sapu.se

52

Högskolan Sapu is a Swedish educational institution specializing in psychotherapy and psychological treatment training, with over 30 years of experience. The website presents a professional image with clear educational offerings targeting professionals and students in psychotherapy. The technical infrastructure is based on WordPress with the Divi theme, incorporating modern web fonts and analytics tools such as Google Analytics and Facebook Pixel. While the site demonstrates good content quality and SEO optimization, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security posture is moderate with HTTPS usage but missing DNSSEC and security headers. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

S

Sermo

sermo.com

70

Sermo operates as a dedicated social network platform for physicians, connecting over one million verified medical professionals globally. The platform offers a unique blend of social networking, paid medical research participation, patient case collaboration, and access to the world's largest physician drug ratings database. Positioned as a leader in physician-only social media, Sermo emphasizes verified membership and community integrity through a rigorous credential verification process and a strict code of conduct. The website content is rich, professional, and tailored to medical professionals seeking peer collaboration and knowledge sharing. Technically, the website is built on WordPress with modern SEO and analytics tools including Yoast SEO, Google Tag Manager, Google Analytics, and Marketo for forms. It employs Osano for cookie consent management and Drift for live chat support. The site is mobile-optimized, accessible, and performs moderately well. Security best practices such as HTTPS enforcement and cookie consent are in place, though explicit security headers and incident response policies are not publicly documented. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with comprehensive privacy and cookie policies and GDPR compliance indicators. However, the absence of WHOIS data reduces domain registration transparency, though the professional presentation and trust signals mitigate concerns. Overall, the site scores well in content quality, technical implementation, security, privacy, and business credibility. Strategically, Sermo should consider publishing explicit security policies and incident response contacts, enhancing security header implementation, and clarifying domain registration details to further strengthen trust and compliance.