Security Directory

K

KAKTUS Software, spol. s r. o.

kswr.cz

60

KAKTUS Software, spol. s r. o. is a Czech-based technology company specializing in custom software development, including internet applications, mobile applications for iOS, Android, and Windows platforms, as well as graphic design and user interface engineering. With over 18 years of experience, the company serves a diverse client base including notable organizations such as Fischer group and Webasto. Their business model focuses on delivering tailored IT solutions with a strong emphasis on quality and professionalism. Technically, the website employs a moderate technology stack including jQuery, Slick Carousel, and Typekit fonts, supporting multi-platform development and cloud services on Microsoft Azure and Amazon AWS. The site is well-designed, mobile-optimized, and provides clear navigation, although some technical aspects such as security headers and SSL configuration details are not explicitly visible. From a security perspective, the site shows good practices like no exposed sensitive data and secure form handling but lacks visible security headers and privacy/cookie policies, which are critical for compliance and user trust. The absence of WHOIS data reduces domain registration transparency, although the website content and business information appear legitimate and professional. Overall, the website presents a trustworthy and professional front for a medium-sized technology company but would benefit from enhanced privacy compliance, improved security headers, and verification of domain registration details to strengthen its security posture and trustworthiness.

Fintokei is a proprietary trading platform focused on providing traders access to funded accounts on the cTrader platform, allowing users to trade with capital and withdraw up to 95% of profits. The company targets active traders seeking to elevate their trading skills and benefit from regular payouts. The website demonstrates a professional and consistent brand presence with active social media channels and a clear business proposition in the finance sector. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools, including Google Tag Manager, Smartlook, and Bloomreach Exponea, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR consent banner. However, the absence of WHOIS registration data raises questions about domain legitimacy and trustworthiness, warranting further verification. Overall, the site is functional, secure, and business-focused but could enhance transparency and contact availability.

S

SurGal Clinic s.r.o.

surgalclinic.cz

59

SurGal Clinic s.r.o. is a private healthcare provider based in Brno, Czech Republic, specializing in surgery, orthopedics, gastroenterology, plastic surgery, rehabilitation, and intensive care among other medical services. The clinic targets both local and foreign patients, offering standard healthcare services covered by health insurance as well as premium paid services under the GRAND CLASS brand. The website reflects a professional healthcare institution with comprehensive patient information, contact details, and certifications, positioning it as a reputable medium-sized healthcare provider in the region. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and AOS, and uses the Foundation framework for responsive design. Google Analytics and Tag Manager are used for visitor tracking, with a clear cookie consent mechanism in place, indicating good privacy compliance. Security posture is moderate; while HTTPS is implied, explicit security headers are not detected in the provided data, and no incident response or vulnerability disclosure information is present. The WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this business type. Overall, the website is well-structured, user-friendly, and trustworthy, with room for improvement in security headers and explicit security policies.

Nadace Lenky a Romana Šmidberských is a Czech non-profit foundation established in 2015, focused on supporting individuals, organizations, cultural initiatives, and charitable events. The foundation actively engages with the community through recurring events such as the Metrostav Handy Cyklo Maraton and supports handicapped children and cultural projects. Their target audience includes donors, charitable organizations, and the Czech-speaking community interested in philanthropy and cultural support. Technically, the website uses a modern JavaScript stack including jQuery, Foundation framework, and popular UI libraries, hosted under a Czech registrar and nameservers consistent with the domain's origin. The site is mobile optimized and provides a good user experience with clear navigation and multimedia content. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism but lacks explicit security headers and published security policies. No forms collecting sensitive data were detected, reducing immediate risk. Overall, the domain registration data aligns well with the website content, supporting legitimacy. The site uses Google Analytics and Tag Manager for visitor tracking with moderate privacy compliance. The absence of a privacy policy and terms of service pages is a notable compliance gap. The website content is safe for general audiences with no adult or questionable content.

D

DREAM PROperty s.r.o.

kolejjinak.cz

44

Kolej Jinak is a small hospitality business providing student and group accommodation in Ústí nad Labem, Czech Republic. The company operates seven newly renovated apartments located near the UJEP university campus and city center, targeting students and individuals seeking convenient housing. The business is owned by DREAM PROperty s.r.o., which is disclosed in the website content and EU funding project information. The website is professionally designed with clear navigation, mobile optimization, and relevant content focused on accommodation services. Technically, the website uses a modern but somewhat dated tech stack including jQuery 1.11.1, Slick Carousel, and Magnific Popup, integrated with Google Tag Manager and Google Analytics for marketing and analytics. The site is served over HTTPS with cookie consent mechanisms implemented, indicating good privacy compliance. However, some security best practices such as security headers and incident response information are missing. From a security perspective, the site shows a moderate security posture with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and business information appear trustworthy. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, Kolej Jinak presents a credible and professional online presence for its accommodation services, with room for improvement in security policies and domain registration transparency. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and verifying domain registration details to improve trustworthiness.

S

Úvod - Sklípek na masaryčce

sklipeknamasarycce.cz

45

The website www.sklipeknamasarycce.cz represents a small hospitality business offering a unique wine cellar rental experience in the city center of Ústí nad Labem, Czech Republic. The business targets individuals and companies seeking venue space for private celebrations, corporate events, and wine tastings. The site provides detailed information about rental options, pricing, catering, and additional services such as accommodation. The presence of an age verification popup indicates compliance with legal requirements for alcohol-related content. Technically, the website employs a modern JavaScript stack including jQuery, Slick Carousel, Magnific Popup, and Google Tag Manager for analytics and marketing. The site is mobile responsive with a cookie consent mechanism, although it lacks explicit privacy and terms of service pages. Security posture is moderate with HTTPS enforced and some privacy controls, but missing HTTP security headers and formal policies reduce overall security maturity. From a security and compliance perspective, the site shows good practices such as age verification and cookie consent but lacks documented privacy policies and incident response contacts. The absence of WHOIS data limits domain legitimacy verification, though the website content and contact details appear professional and consistent with a legitimate small business. Overall, the site is functional and professionally presented with moderate technical and security maturity. Strategic improvements in privacy documentation, security headers, and WHOIS transparency would enhance trust and compliance.

D

Dream PRO, s.r.o.

dreamvanlife.cz

44

Dream PRO, s.r.o. operates the website www.dreamvanlife.cz, offering camper van rental services focused on Volkswagen Grand California 600 vehicles. The business targets travelers seeking flexible and comfortable travel experiences in the Czech Republic, providing insurance and camping equipment as part of the rental. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technically, the site uses common JavaScript libraries and Google services for analytics and marketing, with cookie consent mechanisms implemented to comply with GDPR. Security posture is adequate with HTTPS enforced, but could be improved by updating libraries and adding security headers. The absence of WHOIS data reduces domain transparency and trust slightly, but the business information and social media presence support legitimacy. Overall, the site is a reliable platform for camper van rentals with room for technical and security enhancements.

A

AUMANTI design s.r.o.

aumanti.cz

43

AUMANTI design s.r.o. operates a professional e-commerce website specializing in the custom manufacturing and sale of wedding and engagement rings, as well as gemstone jewelry. Established in 2015, the company targets customers seeking bespoke and ready-made jewelry in the Czech Republic market. The website presents a clear business model combining direct retail and custom craftsmanship, supported by a consistent brand presence and social media integration. Technically, the site is built on WordPress with WooCommerce, leveraging common plugins and libraries to provide a functional and user-friendly shopping experience. The site is mobile optimized and includes SEO best practices such as structured data and meta tags. Security posture is solid with HTTPS enforced and spam protection via Google reCAPTCHA, though there is room for improvement in security headers and formal security policies. Privacy compliance is well addressed with a cookie consent mechanism and GDPR-aligned policies. Overall, the website demonstrates a mature digital presence with good business credibility and moderate technical sophistication.

B

Brainmedia, s.r.o.

naum.studio

65

Naum Studio is a Slovakia-based multi-disciplinary design studio specializing in branding, UI/UX, and product development for startups, fintech, health, and web3 sectors. The company positions itself as a creative partner solving complex challenges with simple solutions, targeting innovative and technology-driven clients. Their business model revolves around providing comprehensive design and development services, supported by a professional portfolio and client testimonials that enhance their market credibility. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, GSAP, and various analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Hotjar. The site is mobile-optimized with good SEO practices and uses HTTPS with reCAPTCHA for security. However, some security headers and DNSSEC are missing, indicating room for improvement in security hardening. From a security perspective, the site demonstrates a moderate security posture with HTTPS and anti-bot measures in place but lacks explicit security policies and incident response contacts. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. The domain registration data is consistent and supports the legitimacy of the business. Overall, the website is professional, trustworthy, and well-structured, with minor technical and security enhancements recommended to elevate its security posture and compliance maturity.

S

Sixt Leasing

sixtleasing.cz

47

Sixtleasing.cz is a professional website offering premium operational leasing and fleet management services primarily targeting corporate clients in the Czech Republic. The company is part of the larger Sixt group, a well-known international vehicle rental and leasing brand. The website provides comprehensive information about leasing products, services, and customer support, with clear navigation and a modern design. Technically, the site uses common JavaScript libraries such as jQuery and Slick Carousel, integrates Google Analytics and LinkedIn tracking, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though additional security headers and published security policies could enhance trust. The absence of WHOIS data reduces domain transparency but does not significantly impact the overall credibility given the strong brand presence and professional content. Overall, the site is well-structured, compliant, and trustworthy for its business purpose.

JK Catering is a small hospitality business based in the Moravskoslezský region of the Czech Republic, specializing in catering services for weddings, corporate events, celebrations, and other occasions. The company emphasizes quality and fresh ingredients, targeting both individual and business clients within its regional market. The website reflects a professional and consistent brand presence with clear service offerings and client testimonials, supporting its local market position. Technically, the website is built on WordPress and employs common web technologies such as jQuery, Bootstrap, and Google Analytics. It is hosted by Wedos, a Czech hosting provider, and uses HTTPS with Google reCAPTCHA for form security. The site is moderately optimized for performance and mobile devices, with good SEO practices implemented via Yoast SEO plugin and structured data. From a security perspective, the site benefits from HTTPS and anti-bot measures but lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance. No vulnerabilities or exposed sensitive data were detected. The absence of direct contact emails or phone numbers on the site limits immediate contact options but the presence of a contact form with reCAPTCHA mitigates spam risks. Overall, JK Catering’s website is a trustworthy and professional digital presence for a small catering business, though improvements in privacy compliance and security hardening are recommended to enhance user trust and regulatory adherence.

DP webdesign is a small Czech web design studio specializing in creating websites, internet presentations, and advertising materials primarily for local businesses, entrepreneurs, and private individuals. The company has been active since 2009 and showcases a portfolio of over 70 completed projects, emphasizing professionalism, simplicity, and functionality in their web solutions. Their services include web design, development, graphic design, and ongoing website administration and support. The website content is in Czech and targets a local Czech audience. Technically, the website uses a modern but basic tech stack including Bootstrap 4, jQuery, Font Awesome, and several JavaScript libraries for UI effects and carousels. Some resources are loaded locally, others from CDNs. The site appears mobile responsive with good navigation and content structure, though accessibility features are basic. Hosting and DNS are managed through REG-INTERNET-CZ and Forpsi name servers. Performance is moderate with no evident CMS or advanced platform detected. From a security perspective, the site lacks visible security headers and privacy or cookie policies, indicating compliance gaps with GDPR. SSL status is unknown from the data but recommended to verify HTTPS enforcement. No forms collecting sensitive data are present, reducing immediate risk. No incident response or vulnerability disclosure information is provided. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the stated experience and no privacy protection, enhancing trust. Overall, the website is functional and professional for a small local web design business but would benefit from improved privacy compliance, security hardening, and transparency on data protection. The risk level is moderate with no critical vulnerabilities detected but some compliance and security best practices missing.

M

MEDIA MARKETING SERVICES a.s.

hitradionorthmusic.cz

53

Hitrádio North Music is a Czech internet radio station operated by MEDIA MARKETING SERVICES a.s., founded in 2017. The website offers multiple live music streams, podcasts, radio programs, contests, and an e-shop, targeting Czech-speaking music listeners. The platform demonstrates a solid market position as a regional media outlet with active community engagement and a professional digital presence. Technically, the site uses modern web technologies including Google Tag Manager, Facebook Pixel, jQuery, and Foundation CSS framework, hosted by Active24. The website is mobile-optimized with good SEO and accessibility features. Security posture is strong with HTTPS, CSRF protection, and no exposed sensitive data, though some security headers could be improved. Privacy compliance is well addressed with clear GDPR and cookie policies and consent mechanisms. Overall, the site is trustworthy, professionally maintained, and safe for general audiences.

G

Grandem Group

grandem.lv

42

Grandem Group is a creative and dynamically progressing agency based in Latvia, specializing in graphic design and web solutions. Their services include website development, graphic design, SEO optimization, branding, banner creation, video production, and logo design. The company targets both corporate and private clients, emphasizing an individual approach and responsibility, positioning itself as a reliable partner in its industry. The website is professionally designed, mobile-optimized, and uses modern technologies such as WordPress, Bootstrap, and Google Analytics, supported by Cloudflare DNS services. Security posture is good with HTTPS enforced and no exposed sensitive data, though some improvements are recommended such as adding security headers and fixing broken images. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the website is trustworthy and professional, with clear contact information and social media presence.

Tehnotrak is a Latvian company specializing in the sale and delivery of used construction and agricultural machinery. Their website offers a broad catalog of equipment including bulldozers, excavators, tractors, and harvesters, targeting businesses and professionals in the construction and agriculture sectors. The company presents itself with clear contact information and a professional online presence, supported by social media channels on Facebook and Instagram. Technically, the website is built on OctoberCMS and uses modern frontend libraries such as Bootstrap, jQuery, OwlCarousel, and Slick Carousel. Tracking tools like Google Analytics and Facebook Pixel are implemented for marketing and user behavior analysis. Security-wise, the site uses HTTPS and secure forms with CSRF tokens but lacks visible HTTP security headers and explicit privacy or cookie policies, which may pose compliance risks. WHOIS data could not be retrieved due to query limits, limiting domain registration trust analysis. Overall, the website is functional, professional, and safe for general audiences but would benefit from enhanced privacy compliance and security hardening.

SIA STRAK operates the website videsprodukti.lv, offering environmental landscaping and waste management products primarily to Latvian customers. The company positions itself as a leading distributor in Latvia for street, garden, and park equipment, as well as waste containers and recycling solutions. The website supports e-commerce with options for office pickup and delivery, targeting businesses and organizations involved in environmental projects. Technically, the site uses OpenCart CMS with common web technologies such as jQuery, Bootstrap, and Slick Carousel, and integrates Google Analytics and Tag Manager for user tracking. The site is mobile optimized with a professional design and clear navigation. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit vulnerability disclosure mechanisms. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the site appears legitimate and professionally maintained, with moderate risk and room for security improvements.

Y

Young Media House

youngmediahouse.lv

38

Young Media House is a Latvian youth media center focused on educating and inspiring young people interested in media through lectures, seminars, and events. The website is built on WordPress with a modern tech stack including Yoast SEO and WPBakery Page Builder, providing a good user experience and mobile optimization. Security posture is moderate with HTTPS enabled but lacking some security headers and privacy compliance elements. The absence of WHOIS data limits full trust verification, but the site content and social media presence indicate a legitimate organization. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and conducting regular security audits.

A

Aon Baltic Latvijas filiāle

broko.lv

57

Broko.lv is an online insurance brokerage platform operated by Aon Baltic Latvijas filiāle, the largest insurance broker in the Baltic states. The website offers online comparison and purchase of auto, travel, and yacht insurance policies, targeting Latvian consumers seeking convenient and cost-effective insurance solutions. The platform emphasizes ease of use with online calculators and quick policy issuance. Technically, the site employs modern JavaScript libraries such as jQuery and Slick Carousel, integrates Google Tag Manager and Facebook Pixel for analytics and marketing, and uses HTTPS to secure communications. While the site lacks explicit advanced security headers and a published security policy, it demonstrates basic security best practices including form validation and no exposed sensitive data. Privacy and cookie policies are present and indicate GDPR compliance. Overall, the website presents a professional and trustworthy front for an established insurance brokerage, though WHOIS data could not be verified due to query limits. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility features to strengthen security posture and compliance.

I

Inmetex

inmetex.lv

57

Inmetex is a Latvian metal processing company specializing in custom manufacturing of high-quality steel and metal products for architectural applications. Their product range includes glass doors, windows, fireproof doors, shower cabins, and office partitions, targeting architects, designers, construction firms, and end customers seeking premium metal solutions. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is adequate with HTTPS and cookie consent implemented, though security headers and incident response information are absent. WHOIS data is unavailable due to query limits, limiting domain registration trust analysis. Overall, the site is functional, secure, and compliant with privacy regulations, suitable for a small manufacturing business.

Heartfulness.org is a well-established non-profit organization focused on meditation and spiritual education, with a global presence and localized content such as this Finnish site. The website offers a rich set of resources including masterclasses, meditation guides, apps, and community engagement tools. Technically, the site is built on WordPress with modern frameworks and is hosted on AWS infrastructure, providing a good user experience with mobile optimization and multimedia content. Security posture is solid with HTTPS and reCAPTCHA usage, though improvements like DNSSEC and security headers could enhance protection. Privacy compliance is moderate due to the absence of a clear privacy policy and terms of service pages. Overall, the site is trustworthy, professional, and serves its target audience effectively.

B

Bioracer Official Store

bioracer.pl

59

Bioracer Official Store is a premium sports apparel company specializing in custom bike clothing and accessories, targeting cyclists, triathletes, and athletes across multiple sports disciplines including skating and skiing. The company emphasizes performance, aerodynamics, and comfort, leveraging real-world racing data and wind tunnel testing. Their market position is strong, supported by endorsements from Olympic and World Championship athletes and a broad product range including cycling clothes, triathlon suits, and athletics apparel. The website is multilingual and designed to serve a European and global audience with a focus on quality and innovation. Technically, the website is built on WordPress using the Blocksy theme and integrates modern marketing and analytics tools such as HubSpot, Facebook Pixel, and Mailchimp. Performance optimizations like WP Rocket are in place, and the site is mobile-optimized with good accessibility and SEO practices. The technical infrastructure reflects a mature digital presence suitable for e-commerce and brand engagement. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR. However, explicit security headers and a public security policy or incident response information are absent, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content analysis. The WHOIS data for the subdomain www2.bioracer.com is unavailable, which is typical for subdomains; the main domain registration is presumed consistent with the business history. Overall, the website presents a professional, trustworthy, and secure platform for Bioracer's business operations. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure program to further strengthen trust and compliance.

R

RVG FURNITURE

rvgfurniture.com

63

RVG FURNITURE is a newly established e-commerce retailer specializing in furniture components such as table legs, shelf brackets, and wooden panels. The company operates on the Shopify platform, leveraging modern e-commerce technologies and integrations to provide a seamless shopping experience. Their market position targets consumers and businesses seeking quality furniture parts with worldwide shipping and customer-friendly policies like hassle-free returns. The website demonstrates consistent branding and a professional design, supporting a positive user experience.

S

SIA Woodflex

gjmetals.lv

57

Gjsteelandwood.lv is a Latvian small manufacturing business operating under the legal name SIA Woodflex. The company specializes in metalworking, powder coating, and design/project solutions, targeting both business and individual customers. Their website is built on the Shopify platform using the Debutify theme, reflecting a moderate level of digital maturity with good mobile optimization and basic accessibility features. The site includes essential contact information and an age verification mechanism, indicating attention to regulatory compliance for their product/service category. Security posture is strong due to Shopify's infrastructure, HTTPS enforcement, and standard security headers, although explicit privacy and terms policies are missing. Overall, the website presents a professional and trustworthy front for a local manufacturing service provider.

S

SIA ENCONTROL BALTIC

encontrol-baltic.lv

43

Encontrol Baltic is a small Latvian company specializing in providing information systems and software solutions for small and medium enterprises in the energy and utilities sector. Their offerings focus on energy data management, including processing and analysis of smart meter data and work management software tailored for energy management. The company positions itself as a niche regional player with a professional and consistent online presence. Technically, the website is built on WordPress with modern frontend libraries such as jQuery and FontAwesome, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced, but lacks important security headers and cookie consent mechanisms. No WHOIS data was available due to query limits, limiting domain registration trust verification. Overall, the website is professional and safe, but could improve privacy compliance and security best practices.

V

Valnes

valnes.lv

47

Valnes is a medium-sized company specializing in modern access and security systems, including smart locks, door hardware, and access control solutions primarily serving Latvia and Estonia. The company operates an e-commerce platform alongside physical offices in Tallinn and Riga, targeting architects, designers, business clients, and end consumers. Their product portfolio includes design handles, smart locks, door automation, and evacuation door solutions, positioning them as a trusted regional player in the security hardware retail sector. Technically, the website leverages modern web technologies such as Laravel Livewire, Alpine.js, and integrates Google reCAPTCHA for security. The site is well-structured, mobile-optimized, and includes comprehensive privacy and cookie policies with consent mechanisms, reflecting good digital maturity. Security posture is solid with HTTPS enforced and anti-bot protections, though explicit HTTP security headers and a dedicated security policy page are absent. WHOIS data could not be retrieved due to query limits, limiting domain trust analysis, but the website's professional content, contact information, and certifications support legitimacy. Overall, the site presents a trustworthy and professional digital presence with room for security policy enhancements.

SIA Latvijas Fakti is a Latvian market and sociological research agency established in 1991, providing comprehensive research services including public opinion polling, social, economic, and political studies. The company is co-owned by Finnish firm Taloustutkimus Oy since 1998, indicating international collaboration. The website presents detailed service descriptions, interactive data visualizations, and maintains a professional appearance with consistent branding. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Chart.js, ensuring good mobile responsiveness and user experience. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security headers and incident response information. Privacy compliance is supported by a GDPR-aligned privacy policy and cookie banner. Overall, the website is trustworthy and professionally maintained, though WHOIS data is unavailable due to query limits, slightly reducing trustworthiness.

CR-Group is a Latvian small business specializing in property-related services including heating system installation and maintenance (CR-SILTUMS), property management (CR-APSAIMNIEKOŠANA), construction (CR-BŪVE), and cleaning services (CR-UZKOPŠANA). The company targets residential and commercial property owners primarily in Riga, Latvia. Their website is professionally designed with a clear structure and good mobile optimization, leveraging common web technologies such as jQuery and Bootstrap. The site includes a comprehensive cookie and privacy policy in Latvian, demonstrating awareness of GDPR compliance and user consent mechanisms. However, no explicit terms of service or security policies are present, and contact information is limited to an email and physical address embedded in the privacy policy text. WHOIS data could not be retrieved due to query limits, but the domain and website content appear consistent with a legitimate local business.

S

SIA "KMJ"

leduslacis.lv

56

LedusLācis, operated by SIA "KMJ", is a Latvian company specializing in climate control solutions including air conditioning, heat pumps, ventilation, and air quality products. With over 12 years of experience and a portfolio including state projects, the company serves residential and commercial customers primarily in Latvia. Their business model combines e-commerce sales with installation and maintenance services, supported by a professional website built on WordPress with modern technologies and SEO optimization. The website demonstrates good content quality, clear navigation, and mobile responsiveness. Security posture is solid with HTTPS and some security headers, though improvements in CSP and incident response transparency are recommended. Privacy and cookie policies are present and GDPR compliant. Overall, the company presents a trustworthy and professional digital presence with strong market positioning in the energy sector.

Cubikone.lv is a Latvian e-commerce retailer specializing in collectibles such as figurines, soft toys, board games, and related hobby products. The website targets collectors, gamers, and hobby enthusiasts primarily in Latvia, offering a broad catalog of over 1000 products. The business model is focused on online retail with delivery services and monthly new product additions. The site is professionally designed with clear navigation and multi-language support (Latvian, Russian, English). Technically, the site uses jQuery, Slick Carousel, and Google Tag Manager for analytics and marketing. Performance and mobile optimization are good, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies. WHOIS data could not be retrieved due to query limits, but the site shows no signs of suspicious activity and appears legitimate. Contact information including phone and physical address is clearly provided, enhancing business credibility.

L

Latvijas Ūdensapgādes un Kanalizācijas Uzņēmumu Asociācija

lwwwwa.lv

45

The Latvijas Ūdensapgādes un Kanalizācijas Uzņēmumu Asociācija (LŪKA) is a professional non-profit association uniting water supply and sanitation companies in Latvia. Established in 1990, it plays a significant role in the development of the water industry, promoting safe drinking water and environmentally friendly wastewater systems. The website reflects a medium-sized organization with a clear focus on industry collaboration, education, and member support. It targets industry professionals and stakeholders within Latvia. Technically, the site is built on WordPress with modern libraries and frameworks such as Bootstrap and jQuery, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers are not detected and no explicit security policies or incident response information are published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though improvements in security transparency and policy publication are recommended.

S

SIA Uzdevumi.lv

paligsmacibas.lv

65

Paligsmacibas.lv is an educational platform offering video courses, digital homework, and learning resources primarily targeting Latvian school students. The website is well-structured with clear navigation and a professional design, supporting multiple grade levels and subjects. It partners with Uzdevumi.lv, a major Latvian educational portal, enhancing its market position and service offerings. The platform uses modern web technologies including jQuery, Slick Carousel, Google Tag Manager, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS usage and cookie consent mechanisms, but lacks explicit security headers and visible incident response policies. Overall, the site is trustworthy, compliant with GDPR, and provides a safe environment for its target audience.

R

Ready For the Show

rfts.lv

38

Ready For the Show is a Latvian-based small business specializing in comprehensive event technical services including stage construction, lighting design, audio provision, 3D stage and event design, video IMAG projection, live streaming, and technical personnel support. The company targets event organizers requiring professional technical support for concerts, seminars, weddings, and corporate events. The website presents a professional and consistent brand image with clear service offerings and contact information, positioning itself as a reliable local provider in the event services market. Technically, the website employs a modern frontend stack with popular JavaScript libraries and CSS frameworks such as jQuery, Bootstrap, fullPage.js, and Slick Carousel, ensuring a good user experience and mobile optimization. However, there is no evidence of a CMS or backend platform, and no analytics or tracking scripts were detected, indicating a focus on privacy but also limited digital marketing sophistication. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for compliance with GDPR and other regulations. The absence of WHOIS data due to query limits restricts domain legitimacy verification, though the site content and contact details appear genuine. No critical vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance measures, and domain registration transparency to improve trustworthiness and regulatory adherence.

Z

Zelta zaptes, Ievārījumi, Dāvanas, Kolekcijas

zeltazaptes.lv

43

The website zeltazaptes.lv represents a small Latvian e-commerce business specializing in the retail of jams, syrups, teas, and gift packaging. The site targets Latvian consumers interested in natural berry products and gift collections. The business model is focused on direct online sales with a niche market position emphasizing local and natural ingredients. The website is built on OkayCMS 2.1.6 and uses common web technologies such as jQuery and Slick Carousel, providing a moderate level of technical maturity and a good user experience with mobile responsiveness and clear navigation. From a security perspective, the site uses HTTPS and includes basic form validation and captcha mechanisms, but lacks advanced security headers and anti-CSRF protections. No privacy or cookie policies are present, indicating gaps in compliance with GDPR and related regulations. The absence of WHOIS data due to query limits restricts the ability to fully verify domain legitimacy, though the site content and contact information suggest a legitimate small business. Marketing tools like AddThis are used for social sharing, but no advanced analytics or tracking services were detected. Overall, the website presents a professional and trustworthy front for a small retail business but requires improvements in security hardening, privacy compliance, and transparency to enhance trust and reduce risk. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, adding anti-CSRF protections, and improving WHOIS data availability or transparency.

MEEKAA is a small Latvian e-commerce business specializing in family-themed design products including printed apparel and home goods. The website is built on the Shopify platform, leveraging its robust e-commerce infrastructure and security features. The site is multilingual with Latvian as the primary language and English as an option, targeting families and fashion-conscious consumers. Privacy and cookie policies are implemented with GDPR compliance, and the site uses common marketing and analytics tools such as Facebook Pixel and Google Analytics. The technical infrastructure is modern and well-optimized for mobile devices, with good performance and basic accessibility features. Security posture is solid due to Shopify's platform protections and HTTPS enforcement, though explicit security and incident response policies are not published. Overall, the website presents a professional and trustworthy online store with room for improvement in transparency and contact information.

SaulesGultasVela.lv is an e-commerce retailer based in Latvia specializing in quality bedding products including bed linens, pillows, blankets, and related home textiles. The website targets consumers seeking premium bedding solutions and offers a variety of product categories with clear navigation and promotional discounts. Technically, the site uses modern marketing and analytics tools such as Google Tag Manager and MailerLite, and is built on the Verskis CMS platform. The website is mobile optimized and provides a good user experience with professional design and clear product presentation. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR, but lacks explicit privacy policy and terms of service pages, as well as security headers, which are recommended for enhanced security posture. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the site appears legitimate and functional with moderate risk, suitable for its business model.

S

SIA "Mix Max"

pamatubuve.lv

61

The website pamatubuve.lv represents a small Latvian company, SIA Mix Max, specializing in the sale and consultation of screw piles and foundation solutions for various construction needs. The business targets construction professionals and homeowners in Latvia, offering a range of galvanized steel screw piles suitable for different soil types and applications. The site is well-branded and provides clear contact information, including phone numbers, email addresses, and a physical address in Riga. It also offers downloadable catalogs and consultation request forms, enhancing customer engagement. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities. It uses modern web technologies such as jQuery, Bootstrap, and slick carousel for UI components. The site is mobile-optimized and SEO-friendly with proper meta tags and structured data. However, some technical improvements could be made, such as implementing security headers and configuring analytics properly. From a security perspective, the site enforces HTTPS and includes privacy and cookie consent mechanisms, indicating basic compliance with GDPR. No explicit security policies or incident response information is present, and WHOIS data could not be retrieved due to query limits, which slightly reduces trustworthiness. No vulnerabilities or suspicious content were detected. Overall, the website presents a professional and trustworthy front for a niche construction materials supplier in Latvia. Strategic improvements in security policies, WHOIS transparency, and analytics configuration would enhance its digital maturity and compliance posture.

Y

Yayawood

yayawood.com

58

Yayawood is an e-commerce business specializing in Montessori-inspired wooden toys and furniture for children, targeting parents and caregivers who value educational and eco-friendly products. The website is built on the Shopify platform using the Debutify theme, integrating modern technologies and marketing tools such as Google Analytics, Facebook Pixel, and Judge.me for customer reviews. The site demonstrates good design quality, mobile optimization, and user experience, with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and some security best practices observed, though explicit security headers and a published security policy are lacking. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy and trustworthiness. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation to improve trust and compliance.

I

infrasiltums

infrasiltums.lv

44

Infrasiltums.lv is a Latvian e-commerce website specializing in the sale of infrared electric heating panels and related accessories. The business targets consumers and businesses interested in energy-efficient heating solutions, emphasizing health benefits and ease of installation. The website is built on a modern WordPress platform using WooCommerce and Elementor, providing a good user experience with clear navigation and responsive design. Contact information is prominently displayed, enhancing business credibility. However, the absence of privacy and cookie policies and lack of visible security headers indicate areas for compliance and security improvement. WHOIS data could not be retrieved due to query limits, limiting domain trust verification. Overall, the site presents a professional and trustworthy front for its niche market.

S

SIA "POLIMAF"

skarb.lv

51

SKARB is an e-commerce and retail business specializing in the sale and delivery of authentic Ukrainian food products in Latvia, primarily targeting consumers in Riga. The company operates both an online store and physical presence, offering a wide range of food categories including sweets, meat products, beverages, and alcoholic drinks. The website is built on the OpenCart platform and uses a variety of common JavaScript libraries and frameworks to provide a responsive and user-friendly shopping experience. The presence of an age verification modal for alcohol sales indicates compliance with local regulations for restricted products. However, the lack of WHOIS data due to query limits limits the ability to fully verify domain legitimacy. The site provides clear contact information and company registration details, enhancing business credibility.

SIA Paisumi operates a small hospitality business offering modern accommodation near the Jūrkalne sea cliff in Latvia. The website presents a well-structured, visually appealing platform targeting tourists seeking a peaceful seaside retreat. The business model focuses on rental of well-equipped houses with amenities such as free bicycle use and upcoming hot tub facilities. The company appears to be a small local player without extensive digital footprint or complex infrastructure. Technically, the website is built on a Webcard CMS platform using standard web technologies including HTML5, CSS3, and JavaScript with the Slick carousel library. The site is mobile optimized and provides a good user experience, although accessibility features are basic and SEO optimization is minimal. No advanced analytics or tracking tools were detected. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which limits its compliance posture. HTTPS presence is assumed but not verifiable from the data provided. No forms or data collection mechanisms were found, reducing exposure to input-based vulnerabilities. WHOIS data could not be retrieved due to query limits, but the domain appears legitimate with no suspicious indicators. Overall, the website is functional and suitable for its business purpose but would benefit from enhanced security measures, privacy compliance, and clearer contact information to improve trust and regulatory adherence.

A

ASD Aviation Software Distribution SIA

asdaviation.com

68

ASD Aviation Software Distribution SIA is a specialized aviation software distributor based in Latvia, focusing on providing modular software solutions such as SimUnity for flight training centers. The company targets aviation professionals and training organizations primarily within Latvia and possibly the broader Baltic region. Their business model centers on B2B software distribution and support, positioning themselves as a niche player in the aviation technology sector. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern JavaScript libraries like jQuery and Slick Carousel for enhanced user experience. The site is mobile optimized with a moderate performance profile and basic SEO and accessibility features. The presence of a cookie consent banner with blocking capabilities indicates attention to privacy compliance. From a security perspective, the site enforces HTTPS and uses essential security cookies such as CSRF tokens. However, it lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected, but the absence of WHOIS registration data raises concerns about domain legitimacy. Overall, the security posture is adequate but could be improved with additional measures. The overall risk assessment suggests a generally trustworthy and professional website with minor gaps in transparency and security policy documentation. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details to strengthen trust and compliance.

A

Aquarama s.r.l.

aquarama.it

53

Aquarama s.r.l. is an established Italian manufacturing company specializing in the production of advanced car wash systems including self-service autolavaggi, tunnel, and portal washing systems. With over 20 years of experience and multiple patents, Aquarama serves a professional market of car wash operators and businesses, offering high-quality, technologically advanced products. The company maintains a strong market position supported by ISO 9001 certification and a subsidiary in Switzerland, reflecting its international reach. The website is professionally designed, multilingual, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and tracking tools, ensuring good performance and user experience. Security posture is solid with HTTPS, GDPR compliance, and no visible vulnerabilities, though some security headers could be improved. Overall, Aquarama demonstrates a trustworthy and professional online presence aligned with its business operations.

Workbee.lv is an online retail store based in Latvia offering a broad range of products including stationery, educational equipment, fitness items, home and garden supplies, and decorative products. The website targets general consumers looking for diverse retail goods through an e-commerce platform. The site features product catalogs, shopping cart, wishlist functionality, and seasonal promotions, positioning itself as a general online retailer in the Latvian market. Technically, the website employs common front-end technologies such as Bootstrap, jQuery, Font Awesome, and Slick Carousel. The site is mobile optimized with a moderate performance profile. HTTPS is enabled ensuring secure communication, but the absence of advanced security headers and privacy-related policies indicates room for improvement in security and compliance maturity. From a security perspective, the site shows basic good practices like secure form submissions and HTTPS usage. However, it lacks visible privacy, cookie, and terms of service policies, as well as incident response contacts or security certifications. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the website presents a professional and functional e-commerce presence with moderate trustworthiness. Strategic improvements in privacy compliance, security headers, and transparency of business information would enhance its security posture and user trust.

E

Ergostock

ergostock.lv

66

Ergostock.lv is a professionally developed e-commerce website hosted on the Shopify platform, specializing in ergonomic office furniture and accessories. The site targets office workers and businesses seeking ergonomic solutions to improve workplace comfort and productivity. The business operates primarily in Latvia and presents itself with consistent branding and a user-friendly interface. The website integrates multiple marketing and analytics tools such as Google Tag Manager, Hotjar, Microsoft Clarity, Klaviyo, and Judge.me for customer reviews, indicating a mature digital marketing strategy. From a technical perspective, the site leverages Shopify's robust infrastructure, ensuring reliable hosting and content delivery. The use of modern JavaScript libraries and frameworks, along with performance optimization techniques like lazy loading and prefetching, contribute to a moderate to good performance profile. Mobile optimization and SEO practices are adequately implemented, supporting a positive user experience across devices. Security-wise, the website enforces HTTPS with strong SSL configuration and employs standard security headers, enhancing protection against common web threats. The presence of cookie consent mechanisms and comprehensive privacy policies demonstrates compliance with GDPR and related privacy regulations. However, the absence of a publicly available security policy or incident response contact information suggests areas for improvement in transparency and preparedness. Overall, ergostock.lv exhibits a solid security posture and business credibility typical of a legitimate small e-commerce retailer. The lack of WHOIS data due to query limits restricts deeper domain registration analysis, but the website's professional presentation and compliance measures support its trustworthiness. Strategic recommendations include publishing a security policy, adding incident response contacts, and enhancing accessibility features to further strengthen the site's security and compliance maturity.

ARIS is an established international network of gas stations and fuel card services operating primarily in the energy and transportation sectors. With over 30 years of market presence and a domain age consistent with this history, the company offers a range of services including fuel cards, road toll payments, VAT refunds, parking, and car wash services. The website targets legal entities and private entrepreneurs engaged in commercial transport, providing credit limits and discounts to enhance customer value. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and Particles.js, and integrates analytics tools like Google Analytics and Yandex Metrika. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. Security-wise, HTTPS is enforced, forms use CSRF tokens and Google reCAPTCHA, but there is a lack of DNSSEC and explicit security headers, which are recommended for improvement. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy but could benefit from enhanced security and compliance documentation.

O

ONERENT

onerent.lv

39

ONERENT is a Latvian company specializing in the rental of measuring and construction instruments, targeting service, construction, trading, manufacturing companies, and private individuals. The company positions itself as a niche provider with a focus on ventilation and climate measuring tools and HVAC system assembly equipment. The website is built on the OpenCart CMS platform, utilizing common JavaScript libraries and Google Analytics for tracking. The design is professional and user-friendly, with clear navigation and mobile optimization. However, the absence of a privacy policy and terms of service pages, as well as missing security headers, indicates room for improvement in compliance and security posture. WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is functional and business-appropriate but would benefit from enhanced security and privacy transparency.

O

OrientUs SIA

orient-us.com

54

OrientUs SIA is a Latvia-based education consultancy and professional recruitment agency founded in 2022. The company specializes in assisting international students to study abroad and provides recruitment services to businesses seeking skilled professionals. With partnerships across multiple European countries and an ICEF accreditation, OrientUs positions itself as a trusted intermediary in the international education sector. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on WordPress using common plugins and libraries, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and functional but could improve in security and privacy compliance areas.

MetalaGrafika.lv is a Latvian-based small manufacturing business specializing in metal polymer coatings, including powder coating for doors, rims, and various metal products. The company operates with in-house production facilities and targets both individual and corporate clients primarily in Riga. Their website is professionally designed, providing detailed service descriptions and clear contact information, supporting their market position as a local specialized service provider. Technically, the website uses modern JavaScript libraries such as jQuery and Bootstrap, integrates Google Analytics and reCAPTCHA for analytics and bot protection, and is mobile-optimized with moderate performance. Security posture is adequate with HTTPS enabled and reCAPTCHA usage, but lacks visible security headers and explicit privacy or security policies. The absence of WHOIS data due to query limits limits domain trust verification, but the website content and contact details support legitimacy. Overall, the site scores moderately well in content quality, technical implementation, security, privacy compliance, and business credibility.

I

Izrades.lv

izrades.lv

55

Izrades.lv is a Latvian theater catalog website providing comprehensive information about various theater performances, their ratings, and insights into the theater repertoire in Latvia. The platform targets Latvian theater audiences and enthusiasts, offering a curated and rated selection of shows primarily from Latvian theaters. Technically, the website employs modern web technologies including Ruby on Rails, Bootstrap, StimulusJS, and integrates Google Tag Manager and Cookiebot for analytics and consent management. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS with CSRF protection and cookie consent mechanisms, but lacks some advanced security headers and explicit incident response contacts. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the site appears legitimate, professional, and focused on cultural content without any adult or questionable material.

B

Bertānu Valmieras basketbola skola

bvbs.lv

43

BVBS (Bertānu Valmieras basketbola skola) is a small basketball school based in Valmiera, Latvia, focused on youth basketball training, coaching, and organizing basketball events and tournaments. The website serves as a community hub providing news, event calendars, team information, and multimedia content to engage players, parents, and supporters. The presence of local sponsors and social media links reinforces its community-oriented business model. Technically, the website is built on Joomla! CMS and uses common JavaScript libraries such as jQuery, Slick Carousel, and Fancybox for UI enhancements. The site is mobile-optimized with a responsive design and clear navigation, though SEO and accessibility features are basic. The website uses HTTPS as indicated by the base URL, but lacks explicit security headers and privacy/cookie policies, which are areas for improvement. From a security perspective, the site shows moderate maturity with HTTPS enabled and client-side error logging implemented. However, the absence of security headers, privacy policies, and incident response contacts indicates gaps in compliance and security best practices. No WHOIS data was available due to query limits, but the website content and contact information suggest a legitimate small educational organization. Overall, the website is functional, trustworthy, and serves its target audience well but would benefit from enhanced privacy compliance, security hardening, and transparency measures to improve its security posture and regulatory adherence.