Security Directory

W

Woxro

woxro.com

59

Woxro is a digital consulting and software development company founded in 2019, specializing in digital transformation services including website development, e-commerce, mobile apps, digital marketing, and SEO. The company targets businesses seeking innovative IT solutions primarily in India but with a global client base. The website demonstrates a modern technical infrastructure using React and Next.js frameworks, hosted likely on AWS, with integration of analytics and marketing tools such as Microsoft Clarity, Google Tag Manager, and Facebook Pixel. Security posture is adequate with HTTPS enabled and domain registration protections, but lacks advanced security headers and explicit security policies on the site. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy but could improve transparency and security disclosures.

H

Hardox® Wearparts

hardoxwearparts.com

74

Hardox® Wearparts is a global leader in manufacturing and supplying wear parts made from Hardox® wear plate, a high-strength steel produced by SSAB. The company operates a network of certified wear centers worldwide, delivering customized wear solutions to industrial clients in extreme environments. The website reflects a mature digital presence with modern technologies such as Next.js and React, supported by Azure CDN for content delivery. Privacy and cookie compliance are well implemented with OneTrust, and the site uses Google Tag Manager for analytics. Security posture is strong with HTTPS enforced and appropriate security headers, though DNSSEC is not enabled and no explicit security or incident response policies are published on the site. The domain is long-standing and consistent with the business profile, registered since 2004 with a reputable registrar. Overall, the website is professional, trustworthy, and well-optimized for performance and user experience.

T

Tip-Top Remonts

tiptopremonts.lv

53

Tip-Top Remonts is a small, local Latvian business specializing in shoe and furniture repair services since 2009. The company offers a broad range of repair and restoration services including shoe sole replacement, key cutting, door upholstery, and furniture assembly. Their website is built using modern web technologies such as Next.js and React, with integration of Google Maps for location display. The site is accessible, mobile-optimized, and provides clear contact information and social media links, supporting customer engagement. From a security perspective, the website lacks visible security headers and privacy or cookie policies, indicating areas for compliance improvement. The WHOIS data could not be retrieved due to query limits, limiting domain registration transparency. However, the business information on the site is consistent and credible, with no signs of malicious activity or suspicious content. Overall, the security posture is basic but functional, with recommendations to enhance security headers and privacy compliance. The website content is safe for general audiences, focused solely on repair services without any adult or questionable content. The business credibility is supported by clear service descriptions, contact details, and social media presence. The overall risk is moderate, with strategic improvements recommended in privacy compliance and security best practices to strengthen trust and regulatory adherence.

Bērnudārzs Ķipars is a private preschool educational institution based in Riga, Latvia, with 20 years of experience providing quality early childhood education for children aged 1.5 to 5 years. The website clearly communicates its mission, services, and contact information, positioning itself as a trusted local provider in the education sector. The business model focuses on personalized education, creative development, and bilingual language learning. Technically, the website is built using modern frameworks such as Next.js and React, delivering a fast, mobile-optimized, and accessible user experience. However, the site lacks visible privacy and cookie policies, security headers, and incident response information, which are important for compliance and security posture. WHOIS data could not be retrieved due to query limits, limiting domain registration verification. Overall, the website is professional, trustworthy, and safe for general audiences, but improvements in privacy and security compliance are recommended.

D

Deju Akadēmija

dejuakademija.lv

54

Deju Akadēmija is a specialized ballroom dance school based in Riga, Latvia, offering professional dance courses including group lessons, individual coaching, and wedding dance preparation. The website presents a clear and professional image targeting dance enthusiasts and couples preparing for weddings. The business operates on a service model focused on dance education and training, with a local market presence and a small business scale. Technically, the website is built on modern frameworks such as Next.js and React, with good mobile optimization and moderate performance. Analytics and user behavior tracking are implemented via Google Tag Manager and Hotjar, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though the absence of visible security headers and privacy policies suggests room for improvement. WHOIS data is unavailable due to query limits, but the domain appears legitimate based on website content and presentation. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact information.

P

PSIHOLOĢIJAS AIKIDO CENTRS

popeiko.com

57

The website www.popeiko.com represents the PSIHOLOĢIJAS AIKIDO CENTRS, a small educational and psychological center based in Latvia. It offers psychological aikido training, personal development programs, workshops, and family support services primarily targeting Russian-speaking audiences interested in mental health and well-being. The site is built on modern web technologies including Next.js and React, with media assets hosted on Amazon S3. The design is professional and content-rich, providing clear navigation and relevant information about programs and events. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Contact information is clearly provided, but privacy compliance mechanisms such as cookie consent banners are missing, indicating potential GDPR gaps. Security posture is moderate with no advanced security headers detected and no visible vulnerabilities, but improvements are recommended. Overall, the site is functional and trustworthy from a content perspective but requires attention to domain registration verification and privacy compliance.

B

Brīvdienu pica

brivdienupica.lv

67

Brīvdienu pica is a small local bakery and pizza delivery service based in Rīga, Latvia. The company offers a variety of pizza sets and combos with options for online ordering, delivery, and takeaway. Their website is professionally designed using modern web technologies such as React and Next.js, hosted likely on Cloudflare infrastructure, ensuring good performance and mobile optimization. The site includes comprehensive privacy, cookie, and terms of service policies, indicating attention to compliance and user privacy. Security posture is strong with HTTPS and security headers implemented, though no explicit security policy or incident response information is published. Overall, the business presents a trustworthy and user-friendly online presence suitable for its local market.

V

Vita Apsīte

vitaapsite.lv

53

The website represents a small private psychology practice operated by Vita Apsīte in Latvia, offering a range of therapeutic services including psychological diagnostics, sandplay therapy, family systemic therapy, trauma therapy using EMDR, and other specialized treatments. The business is positioned as a niche healthcare provider with professional certifications and a focus on individual and family clients. Technically, the website is built using modern frameworks such as Next.js and React, hosted on Vercel, and demonstrates good performance and mobile optimization. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy/cookie policies. No WHOIS data was available due to query limits, limiting domain legitimacy verification. Overall, the site is professional and trustworthy but could improve privacy compliance and security best practices.

V

Ventspils 1. doktorāts

1doktorats.lv

51

The website www.1doktorats.lv represents Ventspils 1. doktorāts, a local healthcare provider in Latvia offering medical consultation services with scheduled appointments. The site provides clear contact information including phone numbers, email, and physical address, targeting patients in the Ventspils region. The business model focuses on healthcare service delivery with an emphasis on appointment management. Technically, the website is built using modern web technologies such as Next.js and React, incorporating Leaflet for interactive maps. The site is mobile optimized and presents content in a clear, professional manner. However, no CMS or hosting provider details are evident, and performance is moderate. No analytics or tracking scripts are detected, indicating minimal user tracking. From a security perspective, the site lacks visible security headers and published privacy or cookie policies, which impacts compliance and trust. HTTPS status is unknown from the data provided, and no WHOIS data was retrievable due to query limits, limiting domain trust analysis. No forms or data collection mechanisms were found on the homepage, reducing immediate risk exposure. Overall, the website is functional and professional but would benefit from enhanced security practices, published privacy documentation, and improved transparency regarding domain registration. Strategic recommendations include implementing HTTPS with strong SSL, adding security headers, publishing privacy and cookie policies, and establishing vulnerability disclosure and incident response contacts.

Ogres novada sporta centrs is a municipal sports education institution serving the Ogres novads region in Latvia. It provides professional and interest-based sports education programs across multiple disciplines including athletics, football, handball, weightlifting, orienteering, artistic gymnastics, and canoeing. The center operates under the local government and targets residents, youth, and sports enthusiasts in the community. The website is built on modern web technologies such as React and Next.js, with content managed via Payload CMS and hosted likely on QuickStack infrastructure. The site is well-structured, mobile-optimized, and provides rich content including news, events, and detailed descriptions of sports facilities. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and formal privacy or cookie policies. Contact information and social media presence are clearly provided, enhancing business credibility. WHOIS data is unavailable due to query limits, limiting domain trust analysis. Overall, the site is professional, trustworthy, and serves its community well, though improvements in privacy compliance and security headers are recommended.

Y

YUMA Sushi

yumasushi.lv

54

YUMA Sushi is a small local sushi restaurant and delivery service based in Ogre, Latvia. The website presents a professional and modern digital presence built on Next.js and React, featuring a rich menu, delivery information, and clear contact details. The business targets local customers seeking convenient sushi ordering and delivery. The site is well-structured with good mobile optimization and clear navigation, supporting a positive user experience. However, the absence of privacy and cookie policies, security headers, and vulnerability disclosure information indicates gaps in compliance and security maturity. The WHOIS data could not be retrieved due to query limits, limiting domain trust analysis. Overall, the website is functional and trustworthy for its business purpose but would benefit from enhanced security and compliance measures.

S

SIA ”Bertas Nams”

bertasnams.lv

45

Bertas Nams is a Latvian veterinary wholesale company established in 2002, specializing in supplying veterinary medicines, care products, supplements, disinfectants, pest control products, instruments, diagnostics, animal feed, and pet products primarily to veterinary professionals and breeders. The website serves as a B2B e-commerce platform, showcasing a broad product catalog and multiple well-known veterinary brands. Technically, the site is built on modern frameworks such as Next.js and React, with additional use of jQuery and jQuery UI for UI components. It integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security-wise, the site uses HTTPS and session management but lacks visible security headers and explicit security policies, indicating room for improvement. Privacy and cookie policies are present, suggesting basic GDPR compliance. Overall, the website is professional, trustworthy, and well-structured, though the absence of WHOIS data limits full domain legitimacy verification.

D

Dragon Sushi

dragonsushi.lv

44

Dragon Sushi is a local sushi delivery business operating in Liepāja, Latvia, offering a variety of sushi rolls, sets, soups, and Asian cuisine dishes. The website presents a professional and visually appealing interface built on modern web technologies such as Next.js and React, with integration of Google Maps API for location services. The business targets local customers seeking convenient sushi delivery and takeout options. The site includes clear product pricing, images, and operating hours, supporting a straightforward food delivery business model. However, the absence of privacy and cookie policies, as well as security headers, indicates room for improvement in compliance and security practices. The lack of WHOIS data due to query limits restricts full domain legitimacy verification. Overall, the website is functional and trustworthy for its intended audience but would benefit from enhanced security and privacy measures.

L

Laucis Plastic Surgery

laucis-plastic-surgery.lv

55

Laucis Plastic Surgery is a specialized medical service provider focused on plastic and cosmetic surgery in Latvia, led by Dr. Pēteris Laucis. The website presents key services such as facial plastic surgery, breast augmentation, and other aesthetic procedures targeting a general audience seeking medical cosmetic enhancements. The business operates locally with physical clinics in Riga and Valmiera. Technically, the website is built on a modern React and Next.js stack, hosted on Vercel, ensuring fast performance and good mobile optimization. However, the site lacks comprehensive privacy and cookie policies, and no WHOIS data was retrievable due to query limits, though the domain appears legitimate based on content and presentation. Security posture is adequate with HTTPS enforced but could be improved by adding security headers and formal vulnerability disclosure mechanisms.

P

Põldma Kaubanduse AS

denimdream.com

62

Denim Dream, operated by Põldma Kaubanduse AS, is a leading fashion retail and e-commerce company serving the Baltic region with a broad product portfolio exceeding 16,000 items from renowned brands. The company maintains a strong market position with a large network of physical stores and a well-developed online presence. The website demonstrates a mature technical infrastructure leveraging modern frameworks like Next.js and integrates multiple analytics and marketing tools, ensuring a robust digital experience. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance, although WHOIS data lacks transparency, which slightly impacts trust. Overall, the site is professional, secure, and user-friendly, catering effectively to its target audience.

AQRM is a small investment management and advisory firm specializing in emerging markets, foreign exchange, and precious metals. The company offers tailored asset management solutions based on client preferences and employs a macro, top-down investment strategy focused on capital purchasing power preservation. The firm operates primarily in Latvia and targets investors seeking specialized financial services. The website uses modern web technologies such as React and Next.js, with Wagtail CMS inferred from image data. However, the site currently suffers from a client-side application error that impacts user experience and may reduce trust. Security posture is moderate with use of HTTPS and Google reCAPTCHA but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a cookie policy present but no visible privacy or terms of service pages on the main domain. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional but requires technical and security improvements to enhance professionalism and trust.

H

Holm Bank Latvia SIA

holmbank.lv

67

Holm Bank Latvia SIA is a financial services company operating in the Baltic region, offering a variety of credit products including consumer loans, auto loans, home renovation loans, real estate loans, and loan consolidation services. The company targets both private individuals and businesses, positioning itself as a local Baltic financial institution with 30 years of experience. The website demonstrates a modern technical infrastructure built on Next.js and React, with responsive design and optimized images, indicating a good level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and detailed security policies are absent. Overall, the website is professional and trustworthy, but could improve transparency by publishing privacy policies, terms of service, and security incident response information.

J

Jurmalas SIA “Meistars”

meistars.lv

60

Meistars.eu is a Latvian small business specializing in the supply of high-quality OEM and OE car spare parts, catering to both B2B and B2C customers. The company emphasizes expert support, competitive pricing, and preparation for annual vehicle inspections. The website reflects a professional e-commerce and service platform focused on the transportation sector. Technically, the site is built on a modern React and Next.js stack, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks published security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and functional but would benefit from enhanced compliance and security transparency.

A

Alerio Nordic

alerionordic.com

70

Alerio Nordic is a Danish company specializing in construction project management, 3D modeling and design, and materials delivery, focusing on manufacturing products such as sandwich panels and structural steel. The company targets B2B clients in the construction and manufacturing sectors, positioning itself as a niche regional player with a modern digital presence. The website is built on a modern Next.js framework, hosted on Microsoft Online infrastructure, and integrates Google Analytics and Google Ads for marketing and analytics purposes. Cookiebot is used to ensure GDPR-compliant cookie consent management. Security posture is adequate with HTTPS and consent mechanisms, but lacks explicit security headers and published security policies. The domain registration is consistent with the business profile, showing legitimacy and transparency.

G

GoTrip, SIA

gotrip.lv

59

GoTrip, SIA operates as a leading online travel agency in the Baltic region, offering a comprehensive platform for customers to search and book travel packages from major tour operators. The website provides extensive travel offers, hotel comparisons, and a low price calendar, targeting travelers primarily from Latvia and neighboring countries. The business model focuses on aggregating travel deals and facilitating easy booking with a money-back guarantee, positioning itself as a trusted intermediary in the hospitality sector. Technically, the website is built on modern web technologies including React and Next.js, with integrations for analytics and marketing tools such as Google Tag Manager, Matomo, TikTok Pixel, and OneSignal. The site demonstrates excellent performance, mobile optimization, and SEO practices, ensuring a smooth user experience. Security measures include HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly disclosed. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism, aligning with GDPR requirements. Contact information and trust indicators such as payment logos and social media presence enhance business credibility. However, WHOIS data is unavailable due to query limits, limiting domain registration verification. Overall, GoTrip presents a professional, secure, and user-friendly travel booking platform with strong marketing and compliance practices. Strategic recommendations include publishing detailed security policies and incident response contacts to further enhance trust and transparency.

S

SIA Tukuma Metāls LTD

tukumametals.lv

58

SIA Tukuma Metāls LTD is a small Latvian company established in 2004, specializing in the purchase and processing of ferrous and non-ferrous scrap metals. The company also provides services such as construction waste removal, container rental, industrial gas sales, and vehicle recycling. Their market position is competitive within the Tukums region, targeting both businesses and individual customers. The website is built on modern technologies including React and Next.js, offering good mobile responsiveness and user experience. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. Privacy policy is present and GDPR compliant at a basic level. Overall, the company presents a trustworthy and professional online presence with clear contact information and social media engagement.

M

Mercteil

mercteil.com

76

Mercteil is a specialized e-commerce platform offering 100% genuine Mercedes-Benz, AMG, BRABUS, and BMW tuning and spare parts. Established since 2011, it has positioned itself as a niche leader providing high-quality automotive performance components with worldwide shipping. The website is professionally designed with excellent content quality, clear navigation, and mobile optimization. Technically, it leverages modern frameworks like Next.js and React, hosted behind Cloudflare for security and performance. Security posture is strong with HTTPS enforcement and security headers, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Privacy compliance is good with clear privacy and cookie policies, but lacks a cookie consent mechanism. Overall, the site is trustworthy, secure, and user-friendly, targeting automotive enthusiasts and owners seeking genuine parts.

O

Olīve Virtuves Mēbeles

olivemebeles.lv

65

Olīve Virtuves Mēbeles is a Latvian small business specializing in custom kitchen furniture manufacturing and installation, targeting residential customers seeking personalized kitchen solutions. The website demonstrates a strong market position locally with emphasis on quality craftsmanship and customer satisfaction, supported by numerous positive testimonials. Technically, the site is built on modern frameworks such as Next.js and React, with good mobile optimization and fast performance. The presence of cookie consent mechanisms and privacy policy indicates attention to privacy compliance. Security posture is generally good with HTTPS enforced, though security headers are not visibly configured, and no incident response or security policy pages are present. Overall, the site is professional, trustworthy, and well-maintained, though WHOIS data is unavailable due to query limits, limiting domain registration verification.

V

Visas Iespējas

visasiespejas.lv

57

Visas Iespējas is a Latvian platform dedicated to aggregating and presenting various opportunities for youth, including job vacancies, events, exchange programs, and organizational information. The platform collaborates with multiple reputable partners and organizations, positioning itself as a key resource for young people seeking personal and professional development in Latvia. The website is built using modern web technologies such as React and Next.js, hosted on AWS infrastructure, and integrates analytics tools like Google Analytics and Hotjar to monitor user engagement. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers and incident response information are lacking. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, aligning with GDPR requirements. Overall, the platform demonstrates a solid business model and technical foundation, serving a niche audience effectively.

B

Burberry Limited

lv.burberry.com

68

Burberry Limited is a globally recognized British luxury fashion brand specializing in apparel, accessories, and beauty products. The company operates a sophisticated e-commerce platform with multiple regional domains to serve a worldwide audience. The website demonstrates a high level of digital maturity, leveraging modern frameworks such as React and Next.js, and integrates advanced monitoring and optimization tools like New Relic and Optimizely. The site is well-optimized for performance, accessibility, and SEO, providing an excellent user experience across devices. From a security perspective, the website employs HTTPS with strong SSL configurations and includes essential security headers, reflecting a mature security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms in place. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. The absence of WHOIS data limits domain registration trust analysis, but the website's branding consistency and certifications support its legitimacy. Overall, Burberry's website is a professional, secure, and privacy-conscious platform that effectively supports its luxury retail business. Strategic recommendations include publishing detailed security policies, adding vulnerability disclosure mechanisms, and enhancing transparency around data protection officer contacts to further strengthen trust and compliance.

P

Posti Group Oyj

itella.lv

65

SmartPosti Latvia operates as a parcel delivery and logistics service provider, offering fast and convenient parcel sending and receiving solutions primarily in Latvia and the Baltic region. The company is part of the larger Posti Group Oyj, a well-established logistics entity in Northern Europe. Their services include self-service parcel management, international parcel delivery, and a network of parcel lockers and pickup points. The website targets both private individuals and business customers, emphasizing ease of use and flexibility in parcel handling. Technically, the website is built using modern web technologies including React and Next.js, with Contentful CMS for content management. The site is well-optimized for mobile devices and SEO, featuring structured metadata and Open Graph tags. Performance is moderate with good accessibility basics. Security best practices are observed with HTTPS enforcement and security headers, though explicit security policy and incident response information are not prominently available. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. However, WHOIS data is unavailable due to query limits, limiting domain legitimacy verification. Social media presence and comprehensive customer support pages enhance trustworthiness. Overall, SmartPosti Latvia presents a professional and trustworthy online presence aligned with a major logistics group. Strategic recommendations include publishing explicit security policies, enhancing incident response transparency, and improving accessibility features to further strengthen their digital maturity and security posture.

Peek & Cloppenburg is a large, established fashion retail company operating an e-commerce platform targeting primarily the Austrian market. The website offers a wide range of clothing, shoes, and accessories from over 300 top brands, with services including home delivery within Austria and in-store shopping at 15 physical locations. The business model focuses on online and offline retail integration with additional services like Click & Collect and a customer loyalty program (INSIDER card). Technically, the website is built on modern web technologies including React and Next.js, leveraging content delivery networks and third-party services for search autocomplete and A/B testing. The site is well-optimized for performance and mobile responsiveness, with good SEO and accessibility features. From a security perspective, the site enforces HTTPS, uses standard security headers, and implements cookie consent mechanisms compliant with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure information are not publicly available, which could be improved to enhance trust and transparency. Overall, the website presents a professional, trustworthy, and user-friendly experience with a strong focus on privacy compliance and customer service. The lack of WHOIS data due to privacy protection is typical for commercial sites and does not raise immediate concerns. Strategic recommendations include publishing security policies and incident response details, and enhancing direct contact options for security issues.

A

AS Tallink Grupp

tallinkhotels.com

69

Tallink Hotels, a division of AS Tallink Grupp, operates hotels in Tallinn and Riga offering accommodation, dining, spa, wellness, and event services. The website is professionally designed with excellent content quality and clear navigation, targeting a broad audience including leisure and business travelers. The technical infrastructure is modern, leveraging Next.js and React frameworks, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, security headers, and secure forms, though explicit security policies and incident response details are absent. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR adherence. Overall, the website reflects a mature digital presence aligned with the hospitality industry standards.

P

Picas Meistars

picasmeistars.lv

61

Picas Meistars is a regional pizza delivery and takeaway chain operating primarily in Riga and Ogre, Latvia. The company offers a broad menu of handmade pizzas catering to diverse tastes including classic, pepperoni, Hawaiian, and vegan options. Their business model focuses on online ordering with multiple physical locations to serve local customers efficiently. The website demonstrates a modern digital infrastructure using Next.js and React frameworks, supported by robust analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is strong with HTTPS enforcement and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, user-friendly, and trustworthy, supporting a medium-sized hospitality business. The absence of WHOIS data limits domain trust analysis but the website content and structure indicate legitimacy.

N

No73

no73.lv

68

No73 is a hospitality business operating as a restaurant located in Riga, Latvia. The company offers dining services with an emphasis on celebrating all occasions, operating 24/7 without changes. Their digital presence includes an interactive online menu, table ordering capabilities, and customer feedback collection, positioning them as a modern local restaurant with a focus on customer experience. The website is built using modern web technologies such as React and Next.js, hosted likely behind Cloudflare, and optimized for performance and mobile use. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, enhancing trust and compliance. Overall, the business demonstrates a good level of digital maturity and professionalism, with clear contact information and social media presence supporting customer engagement.

U

Ungurmuiža

ungurmuiza.lv

55

Ungurmuiža is a cultural heritage site in Latvia featuring a unique 18th-century wooden architectural ensemble. The website presents the venue as a destination for concerts, exhibitions, guided tours, weddings, accommodation, and dining, targeting tourists and cultural enthusiasts. The business operates in the hospitality and cultural sectors with a niche market position supported by partnerships with regional and national cultural organizations. Technically, the website is built on a modern Next.js framework, providing good mobile optimization and user experience, though some accessibility features could be improved. Security posture is adequate with HTTPS enabled but lacks some security headers and privacy policies, indicating room for compliance improvements. The absence of WHOIS data limits domain legitimacy verification, but the website content and partner affiliations suggest a legitimate operation. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

2

28Stone Consulting

28stone.com

54

28Stone Consulting is a specialized software consulting company focused on delivering cutting-edge custom software solutions for the financial services industry, including sell-side, buy-side, market venues, and brokers. Founded in 2011 and headquartered in New York, the company has established itself as a trusted partner to leading financial institutions, demonstrated by its extensive client portfolio and industry awards. Their key services include software development for capital markets, legacy system modernization, and electronic trading platform development. The company leverages modern technologies such as React, Next.js, OpenFin, and Cloud9 to deliver scalable and innovative solutions. Technically, the website reflects a mature digital infrastructure with a modern tech stack, good performance, and mobile optimization. The use of asynchronous scripts and integration with analytics and marketing tools like Google Analytics and HubSpot indicates a data-driven approach to user engagement. However, some security headers are missing, and DNSSEC is not enabled, suggesting areas for improvement in security hardening. From a security perspective, the site enforces HTTPS and employs domain transfer protection, but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is weak, with no visible privacy or cookie policies, which could expose the company to regulatory risks. Overall, the security posture is solid but could benefit from enhanced transparency and technical controls. The overall risk assessment is moderate to low, with no critical vulnerabilities detected. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling DNSSEC, adding security headers, and publishing security and incident response information to enhance trust and compliance. These steps will strengthen the company's security culture and regulatory posture while maintaining its strong market position.

S

SIA CFRIGA

crossfitriga.lv

55

CrossFit Riga is a fitness center based in Riga, Latvia, specializing in official CrossFit and HYROX training. It positions itself as the largest CrossFit gym in Latvia, focusing on community, coaching, and high intensity functional fitness. The website reflects a modern digital presence built on Next.js and React, with content managed via Payload CMS and hosted on Quickstack infrastructure. The site offers clear information about classes, schedules, plans, and contact details, targeting fitness enthusiasts and visitors to Riga. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies, indicating room for improvement in compliance and security best practices. The absence of WHOIS data limits domain trust verification, but the business information and content quality suggest a legitimate small fitness business. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and improving accessibility and compliance documentation.

S

Sushi #1

sushi1.lv

65

Sushi #1 is a small hospitality business operating in Ādaži, Latvia, specializing in sushi and wok food delivery and takeaway services. The website presents a well-structured online menu, contact information, and social media presence, positioning the company as a local restaurant with a focus on quality and customer engagement. The business model revolves around online ordering and delivery, supported by a modern web platform. Technically, the website is built using modern frameworks such as Next.js and React, leveraging CDN services for media delivery and Google Fonts for typography. The site is mobile-optimized and provides a good user experience with clear navigation and rich media content. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the website enforces HTTPS and includes several important security headers, indicating a good baseline security posture. However, there is no publicly available security policy or incident response information, which could be improved to enhance trust and compliance. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, including GDPR. The lack of WHOIS data due to query limits limits domain registration analysis, but the website content and contact details support legitimacy. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to strengthen security culture and transparency.

Double9 SIA operates a coworking space business in Riga, Latvia, providing flexible workspace solutions including hot desks, dedicated desks, private offices, virtual office services, and meeting rooms. The company targets freelancers, startups, and professionals seeking a collaborative and well-equipped environment. The website is built on modern web technologies such as Next.js and React, integrated with third-party services like Stripe for payments and Google Maps for location services. The site is well-structured, mobile-optimized, and provides comprehensive business and service information. Security posture is strong with HTTPS and security headers implemented, though cookie consent mechanisms and explicit incident response contacts are absent. Overall, the digital presence reflects a professional and trustworthy business with transparent offerings and active community engagement.

M

MHC Aviation

mhcaviation.com

65

MHC Aviation is a specialized aviation consultancy and recruitment firm based in Latvia, founded in 2018. The company offers tailored recruitment, contracting, payroll, background check, and IT consultancy services to aviation industry clients internationally. Their market position is supported by multiple aviation industry partners and positive client testimonials, indicating a trusted niche player in the aviation recruitment sector. The website is professionally designed with clear navigation and mobile optimization, reflecting a mature digital presence. Technically, the site uses modern frameworks such as Next.js and React, hosted likely on Microsoft Azure infrastructure, with good performance and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though improvements like enabling DNSSEC and adding a security.txt file are recommended. Overall, the domain registration is consistent with the business claims, enhancing trustworthiness. The site does not exhibit any suspicious or malicious content and maintains good privacy compliance.

1

11.lv Online Kazino Latvijā | Virs 3000 Kazino spēlēm

11.lv

66

11.lv is a prominent Latvian online gambling platform offering a wide range of casino games and sports betting services. The website targets adult users interested in online casino entertainment and live sports betting, positioning itself as a leading player in the Latvian market. The platform features over 3000 casino games, live betting options, and promotional bonuses, catering to a mature audience with a professional and engaging user experience. Technically, the site is built using modern web technologies including React and Next.js, ensuring fast performance and excellent mobile optimization. The use of Google Tag Manager indicates moderate user tracking for analytics purposes. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities in the HTML content; however, the absence of explicit security headers and visible privacy or cookie policies suggests room for improvement in compliance and security transparency. The lack of WHOIS data due to query limits restricts full domain legitimacy verification, but the professional presentation and linked partner domains support the site's credibility. Strategic recommendations include publishing comprehensive privacy and cookie policies, enhancing security headers, and providing clear contact and incident response information to bolster trust and compliance.

S

SIA “Vēl Vairāk Saules”

vairaksaules.lv

49

The website www.vairaksaules.lv represents a Latvian hospitality business named SIA “Vēl Vairāk Saules” specializing in Italian cuisine, pizzas, sushi, and eastern dishes with delivery services. The business targets general consumers interested in food delivery and restaurant dining, promoting a mobile app for convenient ordering. The site is professionally designed with good navigation and mobile optimization, built on a modern React/Next.js framework with integrated Google Analytics and Tag Manager for user tracking. From a security perspective, the website uses HTTPS (implied by external Google scripts and modern framework usage), but no explicit security headers were detected in the HTML content. Privacy and cookie policies are present and accessible, indicating basic GDPR compliance. However, no incident response or vulnerability disclosure information is available, and no security.txt file was found. The absence of WHOIS data due to query limits restricts domain registration analysis, but the site appears legitimate with consistent branding and contact information. Overall, the website demonstrates a moderate security posture with room for improvement in security headers and incident response transparency. The technical infrastructure is modern and supports good user experience, but enhanced accessibility and explicit security policies would strengthen trust. The business credibility is supported by clear contact phone information and privacy practices, though additional contact methods like email or physical address would improve transparency. The risk assessment is moderate with no critical vulnerabilities detected from the HTML content. Strategic recommendations include implementing security headers, publishing incident response and vulnerability disclosure policies, and improving accessibility features to enhance compliance and user trust.

K

Karine Paronyanc

karineparonyanc.com

61

Karine Paronyanc is an artist with a professional portfolio website showcasing her art studio, exhibitions, and biography. The website targets art enthusiasts and cultural audiences primarily in Latvia, with international exposure. The business model centers on art creation, exhibitions, and studio workshops. Technically, the site is built on modern frameworks such as Next.js and React, hosted on Google Cloud Storage, and uses Strapi as a CMS. The site is mobile optimized and well-structured, providing a good user experience. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content is professional and consistent with a legitimate artist. Overall, the site scores well on content and business credibility but should improve compliance and security transparency.

N

NIU

niu.com

62

NIU is a global urban mobility brand specializing in the design, manufacture, and sale of high-performance smart electric scooters. The company offers a diverse product portfolio with multiple series targeting urban consumers seeking stylish and technologically advanced transportation solutions. The website reflects a mature digital presence with multi-language support and a focus on product showcasing. Technically, the site leverages modern frameworks such as Next.js and React, with integrations for cookie consent and analytics, indicating a commitment to user experience and data tracking. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements in security headers and published policies are recommended. Overall, NIU presents a professional and trustworthy online presence aligned with its market position in the transportation sector.

P

Prague Lions

lions.cz

54

The Prague Lions website serves as the official online presence for the Prague Lions American football team, highlighting their participation in the European League of Football (ELF) and the Czech American Football Association (ČAAF). The site is designed primarily for sports fans and local community members interested in the team and league activities. The content is minimal but focused on branding and navigation to key sections related to the team and league. Technically, the website is built using modern web technologies including React and Next.js, with Mantine UI for styling and components. The site demonstrates good mobile optimization and a clean, professional design, though content depth is basic. No CMS or hosting provider information is discernible from the provided data. From a security perspective, the site lacks visible security headers and privacy-related policies, which lowers its compliance posture. The WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency but does not necessarily indicate malicious intent. No forms or contact information are present, limiting user engagement and trust signals. Overall, the security posture is moderate but could be improved with standard best practices and transparency enhancements. The overall risk is moderate with no critical vulnerabilities detected in the provided data. Strategic improvements in privacy compliance, contact transparency, and security headers would enhance trust and user confidence.

B

Brno Sígrs

sigrs.cz

52

Brno Sígrs is a local American football team based in Brno, Czech Republic, competing in the 2nd League with multiple teams across age categories. The website provides comprehensive information about the team, including news, match results, standings, and recruitment opportunities. The site is built using modern web technologies such as React and Next.js, offering good performance and mobile optimization. However, the absence of WHOIS data limits the ability to fully verify domain legitimacy. Security posture is moderate with no detected security headers and unknown SSL configuration. Privacy and cookie policies are missing, which impacts compliance. Overall, the site serves its community well but could improve in security and privacy transparency.

T

Trnava Tourism

regiontrnava.sk

59

Región Trnava operates as a regional tourism organization focused on promoting the cultural, natural, and event-based attractions of the Trnava region in Slovakia. The website serves as a comprehensive portal offering event calendars, guided tours, brochures, maps, and an e-commerce platform for tourism-related products. It targets tourists and visitors seeking detailed information and services to enhance their travel experience in the region. The organization maintains a professional online presence supported by official contact details and social media channels, positioning itself as a trusted regional tourism authority. Technically, the website is built on modern web technologies including React and Next.js, with integration of Google Tag Manager and Plausible Analytics for tracking and marketing purposes. The site uses a custom CMS platform provided by Grandus and For Best Clients, s.r.o. Performance and mobile optimization are good, with basic accessibility features and solid SEO practices. Security is well managed with HTTPS, security headers, and cookie consent mechanisms, although there is room for improvement in publishing explicit security policies and incident response information. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is evident through GDPR-aligned policies and cookie management. The WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website demonstrates a mature digital infrastructure suitable for its business purpose. Strategically, the organization should consider enhancing transparency around security policies and incident response, improving accessibility compliance, and maintaining vigilance on third-party scripts to sustain trust and security. These steps will further solidify its position as a reliable regional tourism resource.

O

Obchodní centrum Forum Liberec

forumliberec.cz

65

Obchodní centrum Forum Liberec operates as a large retail and entertainment hub in the Czech Republic, offering over 100 stores, restaurants, cafes, a cinema, children's play area, and extensive parking facilities. The website targets shoppers and visitors in the Liberec region, providing comprehensive information about tenants, events, and services. The digital infrastructure is built on modern web technologies including Next.js and React, with integration of tracking tools like Google Analytics and Facebook Pixel, managed with user consent mechanisms. Security posture is generally good with HTTPS enforced and no obvious vulnerabilities detected, though security headers could be improved. The absence of WHOIS data and explicit privacy policy pages slightly reduces trustworthiness. Overall, the website presents a professional and user-friendly experience suitable for its audience.

G

Vše o glampingu nejen v Čechách | Glamping CZ

glampingcz.cz

70

Glamping CZ is a Czech Republic-based online platform specializing in glamping accommodation and related services. The website offers a curated selection of glamping destinations, tent rentals, gift vouchers, and partner services, targeting camping enthusiasts seeking luxury and comfort in nature. The platform positions itself as a niche market leader in the Czech glamping sector, providing a seamless user experience with rich content and strong social media engagement. Technically, the site is built on modern frameworks such as Next.js and React, integrating various third-party tools for analytics, marketing, and user interaction. Security posture is solid with HTTPS enforcement, security headers, and CAPTCHA protections, though the absence of a privacy policy and terms of service pages indicates room for compliance improvement. The lack of WHOIS data limits domain trust assessment, but the professional presentation and contact transparency support legitimacy. Overall, the site is well-structured, user-friendly, and safe for general audiences.

L

Leo Express Global a. s.

leoexpress.com

78

Leo Express is a transportation company specializing in train and bus ticket sales across Central Europe, offering travel to over 120 destinations. The website is professionally designed with a clear focus on user experience, mobile optimization, and accessibility. It leverages modern web technologies such as React and Next.js, ensuring a responsive and performant platform. Privacy compliance is well addressed with comprehensive privacy and cookie policies and an active consent mechanism. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not published. Overall, the website presents a trustworthy and professional front for its business operations.

S

ScanBox

scanbox.se

66

ScanBox is a Swedish company specializing in food transport solutions for professional kitchens worldwide, ensuring food quality and temperature control from preparation to serving. The website is well-designed, modern, and optimized for mobile devices, reflecting a mature digital presence. The technical infrastructure leverages Next.js and React frameworks, with integrations for cookie consent and analytics, indicating a focus on compliance and user experience. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are not published. Overall, the site presents a trustworthy and professional image suitable for its B2B audience.

P

Perfect Chefs

perfectchefs.eu

60

Perfect Chefs is a culinary business focused on merging traditional chefmanship with advanced technology to provide high-quality mise en place products, stocks, and soups for professional kitchens. The company positions itself as an innovative leader in the hospitality sector, emphasizing sustainability and circular economy principles. Their partnership with the prestigious Bocuse d’Or competition further strengthens their market credibility. Technically, the website is built using modern frameworks such as Next.js and React, with good mobile optimization and performance. Security posture is adequate with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies. No contact information or forms are visible, which may impact user trust and compliance. Overall, the website is professional and trustworthy but could improve privacy compliance and security best practices.

Č

Český Gastronomický Institut servisní s. r. o.

bocusedor.cz

61

The website www.bocusedor.cz represents the Czech national qualifier for the prestigious international culinary competition Bocuse d’Or. It is managed by Český Gastronomický Institut servisní s. r. o. The site provides comprehensive information about the competition, contestants, event schedules, ticketing, workshops, and partner organizations. It targets culinary professionals, gastronomy enthusiasts, and event attendees, positioning itself as a key player in the Czech hospitality and gastronomy sector. Technically, the website is built using modern web technologies including React and Next.js, ensuring fast performance and excellent mobile optimization. It employs WebP images for efficient media delivery and integrates Google Tag Manager and Facebook Pixel for analytics and marketing purposes. The site includes a cookie consent mechanism, supporting GDPR compliance to some extent. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks visible security headers and a published security policy or incident response contacts. The absence of WHOIS data reduces transparency and trustworthiness, although the professional presentation and extensive partner network support legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is well-designed, content-rich, and professionally maintained, but could improve privacy policy transparency, security header implementation, and WHOIS data availability to enhance trust and compliance.

S

Sotheby's

sothebysdiamonds.com

72

Sotheby's is a globally recognized auction house specializing in luxury goods including fine art and diamond jewelry. The website section analyzed focuses on diamond jewelry sales, targeting affluent buyers and collectors. The company operates a sophisticated online platform leveraging modern web technologies such as React, Next.js, and Auth0 for authentication, supported by analytics and consent management tools like Segment and OneTrust. The site demonstrates strong digital maturity with excellent design, mobile optimization, and SEO practices. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although public incident response information is lacking. WHOIS data is unavailable, likely due to privacy protection, but the brand's reputation and trust signals mitigate concerns. Overall, the site is professional, secure, and compliant with privacy regulations, serving a high-end retail market effectively.