Security Directory

I

Institut za evropske studije

ies.rs

28

Institut za evropske studije (IES) is a Serbian academic research institute specializing in European studies, international relations, and political science. The website presents a well-structured platform showcasing research publications, conferences, and academic activities targeting scholars, students, and policy makers. The business model is non-profit and focused on knowledge dissemination and academic collaboration. The domain is well-established since 2010, consistent with the organization's profile. Technically, the website is built on WordPress with common plugins such as Contact Form 7 and social media widgets. The site is moderately optimized for performance and mobile devices, with basic accessibility features. However, SEO and privacy compliance are limited, with no privacy or cookie policies detected. The site uses HTTPS but lacks advanced security headers and DNSSEC. From a security perspective, the site shows a good baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and formal security policies reduces the overall security posture. There is no incident response or vulnerability disclosure information available, which could be improved to enhance trust. Overall, the website is a credible academic platform with good content and user experience but requires improvements in privacy compliance, security best practices, and transparency to meet modern standards and regulations.

B

Baltic Geospatial Information Technology Conference

balticgitconf.eu

44

The Baltic Geospatial Information Technology Conference website represents a regional event focused on fostering collaboration and knowledge exchange in geospatial information technology across the Baltic states. The conference is organized by key regional GIS associations and features a diverse set of speakers from industry, academia, and community projects. The website is built on a modern WordPress platform with a professional design and good content quality, targeting students, researchers, government, and industry professionals interested in geospatial technologies. Technically, the site uses common WordPress plugins and libraries, including Google Analytics for user tracking, but lacks visible privacy and cookie policies, which is a compliance gap. Security posture is good with HTTPS enforced and no obvious vulnerabilities, but security headers and incident response information are absent. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

E

EPG Financial Services Limited

epg-financials.com

67

EPG Financial Services Limited is a Malta-based licensed e-money institution and payment services provider, offering innovative solutions that integrate cash and digital payments. Their flagship product, paylado, exemplifies their commitment to empowering businesses in the evolving financial landscape. The company maintains a strong market position as a leading licensed entity regulated by the Malta Financial Services Authority (MFSA). Technically, the website is built on WordPress using the Avada theme, enhanced with Yoast SEO and Contact Form 7 plugins. Hosting and domain registration are managed through reputable providers including Amazon Registrar and Cloudflare DNS. The site demonstrates good mobile optimization, SEO practices, and moderate performance, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, DNSSEC is not enabled, and security headers are absent, indicating room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact suggests an opportunity to enhance transparency and readiness. Overall, EPG Financials presents a professional, trustworthy online presence with strong business credibility and compliance posture. Strategic enhancements in security policies and technical safeguards would further solidify their risk management and customer trust.

O

Osservatorio europeo di giornalismo (EJO)

ejo.ch

62

The Osservatorio europeo di giornalismo (EJO) is a specialized academic and media research network focused on journalism and media industry analysis across Europe. Affiliated with the Università della Svizzera italiana, it provides research dissemination, news articles, and events targeting media professionals, researchers, and students. The website is well-structured, multilingual, and content-rich, reflecting a mature digital presence since 2015. Technically, it leverages WordPress CMS with common plugins for analytics, forms, and user engagement, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS and privacy compliance, though some security headers could be improved. No critical vulnerabilities or WAF blocks were detected. Overall, the site demonstrates high trustworthiness and professionalism appropriate for an academic media observatory.

A

AndIT Solutions

andit.lv

50

AndIT Solutions is a Latvia-based IT company specializing in digital transformation, web and app development, and tailored IT solutions designed to grow with client needs. The company emphasizes innovation, continuous learning, and client success, positioning itself as a niche provider focused on long-term partnerships. The website is built on WordPress using the Avada theme and common plugins, hosted on AWS infrastructure, reflecting a modern and maintainable technical stack. Security posture is solid with HTTPS enforced and secure forms, though the absence of security headers and privacy/cookie policies indicates room for improvement in compliance and defense-in-depth. Overall, the website presents a professional and trustworthy image with good content quality and business credibility, but would benefit from enhanced privacy compliance and security best practices.

Gaujas Koks SIA is a well-established Latvian timber manufacturing company with over 25 years of experience producing high-quality wood products including kiln dried timber, cross-laminated timber panels, and wood pellets. The company operates multiple sawmills and is expanding its production capabilities, emphasizing sustainable sourcing and environmental responsibility. The website reflects a professional digital presence built on WordPress with modern plugins and a cookie consent mechanism, though it lacks explicit privacy and security policy pages. Contact information is clearly provided, enhancing business credibility. Security posture is adequate with HTTPS enforced but could be improved with additional security headers and incident response information.

V

Vantage Learning

vantagelearning.com

55

Vantage Learning is a recognized leader in K12 education technologies, providing adaptive learning environments and a suite of products aimed at improving student achievement and school performance. Their offerings include adaptive learning platforms, consumer products like MY Access!, consulting services, and professional development. The website reflects a professional and consistent brand image targeting educational institutions and educators. Technically, the site is built on WordPress with common plugins and uses HTTPS with Google Analytics for tracking. However, there is a lack of explicit privacy and cookie policies, and no security headers were detected, indicating room for security and compliance improvements. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and external partnerships suggest a legitimate business presence.

S

Solvangship

solvangship.no

62

Solvangship is a Norwegian-based maritime shipping company specializing in LPG and petrochemical tonnage transport. Established in 2015, the company positions itself as a leading provider in the liquefied gas shipping sector with a strong emphasis on sustainability and corporate governance. Their website reflects a mature digital presence with comprehensive content, including annual reports, sustainability disclosures, and detailed fleet information targeted at clients and stakeholders in the energy and transportation industries. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and integrates Google Analytics and Tag Manager for performance monitoring. Security posture is strong with HTTPS enforced, security headers present, and no critical vulnerabilities detected. Privacy compliance is addressed with a comprehensive privacy policy and cookie consent mechanism, though explicit terms of service and security policies are not found. Overall, the website demonstrates high professionalism, good SEO practices, and a trustworthy business image.

L

Lauma

laumafabrics.com

49

Lauma is a well-established European manufacturer specializing in textile and medical materials, with a strong market position as a leader in these sectors. The company emphasizes innovation and environmental responsibility, holding certifications such as Oeko-Tex, REACH, and ISO. Their business model focuses on manufacturing and distributing high-quality fabrics and medical textile products, serving a broad European audience. The website reflects this with detailed product information and a consistent brand presence. Technically, the website is built on a modern WordPress platform with WooCommerce and Elementor, ensuring a good user experience and mobile optimization. The site uses common plugins for forms and e-commerce, with moderate performance and good SEO practices. However, some technical improvements could enhance security and privacy compliance. From a security perspective, the site enforces HTTPS and uses domain status protections but lacks DNSSEC and important security headers. There is no published security policy or incident response contact, and no vulnerability disclosure mechanism is present. Privacy compliance is partial, with a privacy policy but no cookie consent mechanism. Overall, the website is professional and trustworthy but would benefit from enhanced security measures and privacy compliance to reduce risk and improve user trust.

F

FDT System AB

fdt.se

48

FDT System AB is a Swedish company specializing in retail business and point-of-sale systems, with a strong focus on the Nordic market. Founded in 1979, the company offers cloud-based, flexible, and integrated solutions designed to streamline retail operations across multiple channels. Their flagship product, FDT Sellus, combines backoffice and POS functionalities with modern features and real-time data access. The company positions itself as a leading provider for specialty retail chains in the Nordic region, supported by partnerships with major payment processors like Klarna and Nets. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder, Slider Revolution, and Contact Form 7. It employs modern frontend technologies including Bootstrap and jQuery, and integrates Google Maps and Google reCAPTCHA for enhanced user experience and security. The site is mobile-optimized and includes cookie consent mechanisms, reflecting GDPR compliance efforts. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms to mitigate spam. However, no explicit HTTP security headers were detected, and there is no visible security policy or incident response information. The absence of WHOIS data for the domain www.fdt.se is a notable concern, potentially indicating privacy protection or domain registration under a different name. Despite this, the website content, business information, and external trust signals support the company's legitimacy. Overall, FDT System AB demonstrates a mature digital presence with good content quality and technical implementation. To enhance trust and security posture, it is recommended to implement standard security headers, publish a security policy, and clarify domain registration details. These steps will strengthen compliance and reassure customers and partners about the company's commitment to security and transparency.

B

Balarama

balarama.eu

47

Balarama is a French manufacturer specializing in the production of custom food bars, including cereal bars, protein bars, fruit bars, and organic options. Established since 1985, the company leverages extensive R&D and nutritional expertise to serve B2B clients seeking tailored food solutions. The website reflects a mature business with a strong market position in the French manufacturing sector, supported by certifications such as IFS 2024-2025. Technically, the site is built on WordPress with modern plugins and scripts, including Yoast SEO and Contact Form 7, and employs Google reCAPTCHA for form security. The site is well-optimized for SEO and mobile devices, with a good user experience and professional design. Security posture is solid with HTTPS and consent mechanisms, though some security headers and policies could be improved. Overall, the site is trustworthy and compliant with GDPR, providing clear contact information and business details.

I

ISECO Group

isecogroup.com

62

ISECO Group is a well-established transportation service provider based in Abruzzo, Italy, specializing in bus and minibus rentals, school transport, and cleaning services. Founded in 2002, the company has grown to become a regional leader with a national presence, serving public entities, schools, private groups, and tourists. Their website reflects a professional and consistent brand image with clear service offerings and a user-friendly design. Technically, the site is built on WordPress using modern plugins such as Elementor and Yoast SEO, with integrated Google Analytics and Tag Manager for performance monitoring. Security measures include HTTPS enforcement and reCAPTCHA on forms, complemented by a GDPR-compliant cookie consent mechanism. However, explicit security headers and a formal security policy are absent, representing areas for improvement. Overall, the domain registration details align well with the business claims, supporting the site's legitimacy and trustworthiness.

R

Riddle Digital

riddle.lv

40

Riddle Digital is a Latvian full-service digital marketing agency specializing in digital design and high-performance digital solutions. The company targets businesses seeking comprehensive digital marketing services and maintains a professional online presence with clear branding and social media engagement. The website is built on WordPress using modern plugins and frameworks, indicating a mature digital infrastructure. While the site is well-designed and mobile-optimized, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and incident response information. Overall, the domain appears legitimate, though WHOIS data is unavailable due to query limits, limiting full trust verification.

C

CBRE Baltics

cbre.lv

69

CBRE Baltics is a professional commercial real estate consultancy operating in the Baltic region, providing a broad range of services including advisory, transaction, asset management, valuation, and research. The company targets occupiers, investors, and developers in office, industrial, retail, and hotel property sectors. The website reflects a well-established brand with consistent messaging and a clear market position as part of the global CBRE Group. Technically, the site is built on WordPress with modern plugins and tracking tools, offering a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. Overall, the site is professional and trustworthy, though WHOIS data is unavailable due to query limits, limiting full domain legitimacy verification.

Elektronikas un datorzinātņu institūts (EDI) is a Latvian research institute specializing in electronics and computer science. The organization focuses on innovative research and technological solutions in sectors such as smart transport, smart manufacturing, healthcare, space technologies, and security. The website presents a professional and content-rich platform targeting researchers, industry partners, and students, with multiple ongoing projects and services showcased. Technically, the site is built on WordPress with popular plugins like WPBakery and Slider Revolution, indicating a mature but somewhat dated infrastructure. Security posture is adequate with HTTPS enforced but lacks modern security headers and uses outdated libraries, which could pose risks. Privacy compliance is basic, with no visible cookie consent mechanisms or detailed privacy policies. Overall, the site reflects a credible research entity but would benefit from technical and security updates to enhance trust and compliance.

E

EGEC - European Geothermal Energy Council

egec.org

57

EGEC - European Geothermal Energy Council is a well-established non-profit organization founded in 1998 that promotes the geothermal energy sector across Europe and globally. It serves as a key industry voice, providing policy advocacy, research support, event organization, and member networking services. The website reflects a mature digital presence with comprehensive content including news, policy documents, events, and membership information targeted at industry professionals, policymakers, and researchers. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile responsiveness and SEO optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data limits domain trust analysis, but the professional content and EU transparency registration support legitimacy. Overall, the site is a credible and authoritative platform in the geothermal energy sector.

COGEN Europe is a well-established European association dedicated to promoting cogeneration technologies and policies across Europe. The organization collaborates with EU institutions and industry stakeholders to advocate for energy efficiency and emission reduction through cogeneration. The website reflects a medium-sized association with a solid membership base of national associations and corporate members, positioning itself as a key player in the energy sector focused on cogeneration. Technically, the website is built on WordPress using popular page builders and plugins, indicating a moderate level of digital maturity. The site is mobile-optimized, uses HTTPS, and includes structured data for SEO enhancement. However, some technical improvements are possible, such as adding security headers and fully configuring analytics tools. From a security perspective, the site benefits from HTTPS and does not expose sensitive data. However, it lacks visible security headers and formal privacy and cookie policies, which are important for GDPR compliance and user trust. The absence of incident response and vulnerability disclosure information suggests room for improvement in security governance. Overall, the website is professional and credible but would benefit from enhanced privacy compliance and security best practices to strengthen trust and regulatory adherence.

F

FKM

fkm.de

49

FKM is a German-based organization specializing in providing certified trade fair data, including exhibitor and visitor numbers for events in Germany. With a longstanding presence of over five decades, FKM serves decision-makers and the exhibiting economy by delivering reliable marketing data. The website is professionally designed using WordPress and integrates common plugins such as Yoast SEO and Matomo analytics, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and SEO-friendly, although some accessibility features could be improved. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks visible security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy or terms of service pages. Overall, the website reflects a credible business with room for enhancement in privacy and security transparency.

E

European Karate Federation

europeankaratefederation.net

61

The European Karate Federation website serves as the official digital presence for the continental karate governing body in Europe. It provides comprehensive news, event calendars, organizational structure details, and contact information targeted at athletes, coaches, referees, and karate enthusiasts. The site is built on WordPress with modern plugins for SEO, cookie compliance, and user engagement, reflecting a moderate to advanced digital maturity. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. The absence of WHOIS registration data is a notable anomaly that slightly impacts trust but does not detract from the professional presentation and compliance evident on the site. Overall, the website effectively supports the federation's mission and community engagement.

H

HC-Engineering Oy

itufloor.fi

43

HC-Engineering Oy operates the ItuFloor brand, providing floor heating and cooling solutions across Finland. The company offers both material delivery and turnkey installation services, targeting residential and commercial building sectors. The website is professionally designed, localized in Finnish, and demonstrates a clear market position with over a million square meters of installed floor heating. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Contact Form 7, and includes cookie consent mechanisms aligned with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some HTTP security headers could be improved. Overall, the domain registration details align well with the business identity, supporting legitimacy and trustworthiness.

S

Sigma Industry East North AB

sigmaindustryeastnorth.se

43

Sigma Industry East North AB is a Swedish engineering consulting company specializing in product development, production development, project management, validation, and quality assurance. As part of the larger Sigma group owned by Danir AB, it benefits from a global network spanning 17 countries and 66 cities. The company positions itself as a provider of high-quality engineering services with a strong local presence in Sweden and a commitment to sustainable technological advancement. The website reflects a professional and modern digital presence built on WordPress, incorporating SEO best practices and user-friendly design. The technical infrastructure includes common industry tools such as Google Tag Manager and Hotjar for analytics and user behavior tracking. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in DNS security and HTTP security headers. No critical vulnerabilities or blocking WAF mechanisms were detected, indicating stable accessibility and operational maturity.

V

V360 agency

vvunk.ee

43

V360 Agency OÜ is a small Estonian digital agency specializing in web development, e-commerce solutions, branding, and full digital marketing services. The company positions itself as a creative and professional partner for businesses seeking to elevate their digital presence. Their website showcases a portfolio of projects and client testimonials, indicating a trusted market position within their niche. Technically, the website is built on WordPress with modern JavaScript libraries such as Swiper.js and Tippy.js, and integrates Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS and reCAPTCHA, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the domain registration is consistent and transparent, supporting the legitimacy of the business.

I

Itula Oy

itula.fi

59

Itula Oy is a Finnish company specializing in energy-efficient heating and cooling systems, including innovative ceiling radiant panels and floor heating solutions. Established in 1999, Itula holds a strong market position as a pioneer in its sector within Finland, offering both products and expert consulting services from project planning to implementation. The company emphasizes energy efficiency and indoor climate quality, targeting business clients in construction, industrial, and residential markets. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating a mature digital presence. Security measures include HTTPS, reCAPTCHA, and a comprehensive cookie consent mechanism, though additional security headers and policies could enhance protection. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a credible and established business.

E

Ettevõtlusnädal 2025

ettevotlusnadal.ee

39

Ettevõtlusnädal 2025 is a prominent Estonian nationwide entrepreneurship event organized annually by regional development centers to foster entrepreneurial spirit and support business startups. The website serves as an information hub for event programs, regional trainings, and inspirational content targeting entrepreneurs and aspiring business owners. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and security, including Google Tag Manager and reCAPTCHA. The site is well-optimized for mobile and SEO, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the site reflects a trustworthy and professional digital presence for a non-profit event organization.

U

United Nations Alliance of Civilizations (UNAOC)

unaoc.org

59

The United Nations Alliance of Civilizations (UNAOC) is a United Nations entity dedicated to fostering intercultural dialogue, understanding, and cooperation globally. It serves as a convener and facilitator to promote harmony among diverse cultures and religions, aiming to prevent conflict and enhance social cohesion. UNAOC operates through various programs, global forums, youth engagement initiatives, and campaigns against hate speech and antisemitism, positioning itself as a key player in international peacebuilding and cultural diplomacy. Technically, the UNAOC website is built on the WordPress CMS platform, utilizing a modern tech stack including jQuery, Yoast SEO, and various plugins for enhanced functionality such as responsive sliders, mega menus, and media embedding. The site demonstrates good mobile optimization, accessibility, and SEO practices, supported by structured data markup and social media integration. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS with excellent SSL configuration and avoids exposing sensitive data. However, it lacks explicit security headers and a cookie consent mechanism, which are areas for improvement to enhance compliance and security posture. No vulnerabilities or suspicious activities were detected in the visible content. Overall, UNAOC's digital presence reflects a professional, trustworthy, and authoritative organization aligned with United Nations standards. The domain's WHOIS data is privacy protected, which is typical for UN domains, and the domain age aligns with the organization's history. Strategic recommendations include implementing security headers, adding a cookie consent banner for GDPR compliance, and publishing incident response and vulnerability disclosure policies to further strengthen trust and security.

A

Anija Mõis

anijamois.ee

42

Anija Mõis is a historic manor and cultural site located in Northern Estonia, offering a wide range of services including a permanent exhibition, visitor programs, event hosting such as weddings and seminars, workshops, a manor café, and a gift shop. The website reflects a well-established cultural tourism business targeting families, tourists, and event organizers. The site is built on WordPress using the Avada theme and Fusion Builder, integrating modern plugins like Slider Revolution and Contact Form 7 with Google Analytics and reCAPTCHA for security and analytics. Security posture is good with HTTPS and reCAPTCHA, though some security headers are missing and no privacy policy page was found, indicating room for compliance improvement. Overall, the website is professional, content-rich, and trustworthy, with clear contact information and active social media presence.

V

Visit Otepää

visitotepaa.com

44

Visit Otepää is a regional tourism promotion website dedicated to showcasing the attractions, events, accommodation, and culinary experiences of Otepää, Estonia's winter capital. The site targets tourists and visitors interested in exploring the natural beauty and cultural offerings of the region. It provides comprehensive information and interactive features such as maps, event listings, and a newsletter subscription to engage its audience. Technically, the website is built on WordPress with modern front-end technologies including Bootstrap and JavaScript libraries, and integrates Google Maps for location services. SEO is enhanced through Rank Math plugin and structured data markup is implemented for better search engine understanding. Security-wise, the site uses HTTPS with a valid SSL certificate and employs Google reCAPTCHA on its contact form to mitigate spam. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Overall, the website is professional, user-friendly, and trustworthy, but could improve its privacy compliance and security headers to enhance its security posture.

V

V360 agency

v360.ee

43

V360 Agency OÜ is a small Estonian digital agency specializing in web development, e-commerce solutions, branding, and full digital marketing services. The company positions itself as a smart solution for digital success, targeting businesses seeking to elevate their online presence through comprehensive marketing and branding strategies. Their website showcases a professional design with clear navigation, client testimonials, and a portfolio of projects, indicating a trusted market presence. Technically, the site is built on WordPress with modern JavaScript libraries such as Swiper.js and Tippy.js, and integrates Google Tag Manager and reCAPTCHA for tracking and security. The hosting and domain registration are managed by Zone Media OÜ, a reputable Estonian registrar and hosting provider. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is professional and credible, though improvements in privacy and security policies are recommended.

M

MTÜ Maakondlikud Arenduskeskused

arenduskeskused.ee

45

MTÜ Maakondlikud Arenduskeskused operates as the largest nationwide network in Estonia providing consulting and training services to startups, active businesses, non-profits, and local governments. Their business model is based on publicly funded, free services aimed at fostering entrepreneurship and community development across all 15 Estonian counties. The website reflects a mature digital presence built on WordPress with modern plugins and SEO optimizations, supporting a good user experience and mobile responsiveness. Security posture is solid with HTTPS and standard best practices, though explicit security policies and headers could be improved. Privacy compliance is evident with a GDPR-aligned privacy policy and cookie consent mechanism. Overall, the site demonstrates high business credibility and trustworthiness with clear contact information and partner network links.

R

Rohelise Jõemaa Koostöökogu

joemaa.ee

39

Rohelise Jõemaa Koostöökogu is a small regional cooperative organization based in Estonia, focused on sustainable rural economic development, cultural heritage preservation, and tourism promotion. The website serves as an informational and promotional platform highlighting the organization's mission, events, and regional identity. The technical infrastructure is based on WordPress with common plugins such as Yoast SEO and Contact Form 7, supported by standard web technologies like jQuery and Bootstrap. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and professional but requires improvements in privacy, security, and compliance to enhance trust and user protection.

E

Elkdata OÜ (registrar)

veetee.ee

46

VeeTee.ee is a small Estonian business specializing in outdoor recreational services including ski and snowboard rentals, canoe and rubber boat trips, and accommodation rental at Annemäe Puhkemaja. The company targets tourists and local outdoor enthusiasts seeking guided water and winter sports experiences. The website is built on WordPress with modern plugins and provides clear contact information and service descriptions. Technically, the site uses HTTPS and common WordPress technologies but lacks some security headers and explicit privacy consent mechanisms. Security posture is moderate with no critical vulnerabilities detected but room for improvement in policy transparency and compliance. Overall, the business appears legitimate with consistent domain registration data and a professional web presence.

K

Kodutütred

kodututred.ee

41

Kodutütred is a well-established Estonian youth organization affiliated with the Kaitseliit (Estonian Defence League), focusing on patriotic education and voluntary activities for girls aged 7 to 18. The website serves as an informational and engagement platform, showcasing news, events, organizational structure, and membership opportunities. The organization has a strong national presence with thousands of members and active participation across all counties in Estonia. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, FontAwesome, and Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Hosting and domain registration are consistent with the organization's location and purpose. From a security perspective, the site uses HTTPS and secure forms but lacks advanced security headers and DNSSEC, which could be improved. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulatory requirements.

I

Ida-Viru Ettevõtluskeskus

ivek.ee

46

Ida-Viru Ettevõtluskeskus is a regional development center focused on providing free consulting services to individuals, non-profit organizations, and entrepreneurs in Ida-Viru County, Estonia. Established in 2010, it acts as a regional development engine offering training, funding opportunities, and support services. The website is multilingual, targeting Estonian, English, and Russian speakers, reflecting the regional demographic. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Maps and various plugins for SEO, multilingual support, and user interaction. Security posture is solid with HTTPS and cookie consent mechanisms, though additional HTTP security headers and published policies would enhance compliance and trust. Overall, the site presents a professional and trustworthy digital presence aligned with its business mission.

M

MTÜ Lastekaitse Liit

markalast.ee

41

MTÜ Lastekaitse Liit operates the 'Märka Last' web portal, a non-profit platform dedicated to promoting child rights and welfare in Estonia. The website offers a variety of content including opinion articles, podcasts, news updates, and educational resources targeting parents, children, youth, and child protection professionals. The organization is well-established with a domain registered since 2019 and maintains a consistent brand presence online. Technically, the site is built on WordPress using modern themes and plugins, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced and basic security practices in place, though improvements such as enabling DNSSEC and publishing a security.txt file are recommended. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found in the provided content. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively.

M

Metana Digiagentuur

metana.eu

47

Metana Digiagentuur is a small digital agency based in Tallinn, Estonia, specializing in website design, email marketing, and digital advertising services such as Meta Ads and Google Ads. The company targets businesses seeking comprehensive digital marketing and web development solutions. Their website is built on WordPress using Elementor and WooCommerce, indicating a modern and flexible technical infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security measures.

A

AS Lahevesi

lahevesi.ee

45

AS Lahevesi is a municipal utility company founded in 2008, providing water supply, sewage, property management, cemetery services, and public space maintenance in Lääne-Harju municipality, Estonia. The company operates under contracts with the local government and serves residents and businesses in the region. The website is built on WordPress using Elementor and several plugins, featuring a professional design with clear navigation and mobile optimization. Security measures include HTTPS and Google reCAPTCHA on forms, though additional security headers and cookie consent mechanisms are recommended. The WHOIS data confirms the legitimacy of the company with consistent registration details. Overall, the website demonstrates a solid technical and business foundation with room for improvement in privacy compliance and security policies.

R

Raasiku Vallavalitsus

raasikukalender.ee

45

Raasikukalender.ee is a local government-operated event calendar website serving the Raasiku municipality in Estonia. It provides categorized listings of cultural, sports, theater, music, and other community events targeted at residents and visitors. The website is designed to promote local events and facilitate community engagement through an accessible online platform. The business model is a public service information portal without commercial intent, focusing on local government communication and event promotion. Technically, the website is built on WordPress CMS with common plugins such as Contact Form 7 and uses modern JavaScript libraries like jQuery and Flatpickr for enhanced user experience. It employs Plausible Analytics, a privacy-conscious analytics tool, and loads resources from reputable CDNs. The site is hosted by Elkdata OÜ, an Estonian hosting provider, and uses HTTPS with a valid SSL certificate, ensuring secure data transmission. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and deferred script loading. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure mechanisms are present, indicating room for improvement in security governance. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy and professionally maintained with a clear focus on community service. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, and establishing a vulnerability disclosure process to enhance security posture and regulatory compliance.

M

MTÜ Lastekaitse Liit

lastekaitseliit.ee

46

MTÜ Lastekaitse Liit is a well-established Estonian non-profit organization dedicated to the protection of children's rights and interests. The organization actively develops and implements child protection projects, provides expert opinions on child protection legislation, supports child and youth participation, organizes training for professionals, and offers camp services and scholarships for children and youth. The website reflects a clear mission and target audience focused on children, families, and child welfare professionals. Technically, the site is built on a modern WordPress platform with WooCommerce integration, leveraging popular plugins such as Yoast SEO, WPBakery, and Slider Revolution, indicating a mature digital infrastructure. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, it lacks published privacy and cookie policies, which impacts its privacy compliance score. Social media presence is strong with official Facebook, LinkedIn, and YouTube channels linked. Overall, the website demonstrates good professionalism and trustworthiness but would benefit from enhanced privacy and security policy transparency.

Aktsiaselts Koeru Hooldekeskus is a regional healthcare and eldercare service provider based in Järva County, Estonia. The organization specializes in 24/7 general care, nursing assistance, special care for individuals with deep disabilities, and dementia care. The website reflects a medium-sized entity with a clear focus on providing comprehensive care services to elderly and special needs clients. The business maintains a consistent brand presence and provides clear contact information and service descriptions, positioning itself as a trusted local healthcare provider. Technically, the website is built on WordPress using a modern tech stack including LayerSlider, WPBakery Page Builder, and Google reCAPTCHA for security. The site is mobile-optimized, accessible, and SEO-friendly, leveraging Yoast SEO and structured data for enhanced search visibility. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA to protect forms. However, it lacks some security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website demonstrates a solid digital presence with good business credibility and technical implementation. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance the security posture and regulatory adherence.

R

Rakvere kultuurikeskus

rakverekultuurikeskus.ee

43

Rakvere kultuurikeskus is a public cultural center based in Rakvere, Estonia, providing cultural event hosting, room rentals, and advertising services to the local community and visitors. The website serves as an information portal for cultural activities and services offered by the institution. The domain is well-established since 2012 and aligns with the organization's public service role. Technically, the website is built on WordPress using a modern theme and several plugins to enhance functionality, including social media integration and event management features. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy, serving its purpose effectively with room for security and compliance improvements.

B

Bestmarketing.ee

balticbest.eu

56

BalticBest is a specialized advertising competition targeting the Baltic region, organized in partnership with EPICA Awards. The competition is conducted online with live judging sessions, providing entrants with immediate feedback and transparency. The website serves as a hub for competition information, news, submission details, and agency rankings. The business is positioned as a niche media entity focused on marketing and advertising professionals in Estonia and neighboring Baltic countries. Technically, the site is built on WordPress using Elementor, with modern web technologies and a moderate performance profile. Security posture is solid with HTTPS and secure forms, though it lacks some security headers and formal privacy and cookie policies, which are compliance gaps. Contact information is comprehensive, including emails, phone numbers, and physical address, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

E

Eesti Meediaettevõtete Liit

meedialiit.ee

41

Eesti Meediaettevõtete Liit is a well-established Estonian media association founded in 1990, representing a broad spectrum of private media outlets including web portals, TV, radio, newspapers, and magazines. The organization focuses on promoting trustworthy journalism, protecting the interests of its members, and advocating for fair competition in the media market. The website reflects this mission with relevant content, press council decisions, and news updates targeted at media professionals and the Estonian public. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, and Google reCAPTCHA, ensuring a good user experience and basic security measures. The security posture is solid with HTTPS and anti-bot protections, though some advanced security headers could be added. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and serves its audience effectively.

O

Online Solution 360 GmbH

securecommerce.eu

64

SecureCommerce, operated by Online Solution 360 GmbH, is a specialized cybersecurity service provider focused on protecting online stores and e-commerce platforms. The company offers managed firewall, DDoS protection, malware scanning, and monitoring services tailored to popular e-commerce systems such as Magento, WooCommerce, and Shopware. Their market position is that of a niche provider delivering Security-as-a-Service solutions to online merchants primarily in Germany. The website is professionally designed using WordPress and modern web technologies, providing a good user experience and clear navigation. Contact information and cookie consent mechanisms are well implemented, though privacy and terms policies are missing. Technically, the site uses reputable hosting via OVH SAS and integrates Google Analytics and Tag Manager for tracking. Security posture is moderate with room for improvement in security headers and published policies. Overall, the domain registration and business information are consistent and legitimate, supporting a trustworthy online presence.

Z

Zone Media OÜ

teletorn.ee

43

Tallinna Teletorn is a prominent Estonian tourism and hospitality business operating the highest open viewing platform in Northern Europe. The website presents a professional and engaging digital presence, offering ticket sales, event hosting, educational programs, and restaurant services. The company targets tourists, families, and educational groups, positioning itself as a key cultural landmark in Tallinn. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and social media integration, delivering a good user experience with responsive design and multimedia content. Security posture is solid with HTTPS, cookie consent, and anti-spam measures, though explicit security policies and headers could be improved. Overall, the business demonstrates credibility and digital maturity with room for enhanced privacy compliance and security transparency.

S

SA Eesti Meremuuseum

meremuuseum.ee

46

Eesti Meremuuseum is a well-established maritime museum organization in Estonia, operating multiple museum sites and offering a range of cultural, educational, and research services related to maritime heritage. The website reflects a professional and consistent brand presence, targeting museum visitors, educators, researchers, and maritime enthusiasts. The business model is that of a government or non-profit cultural institution with a medium organizational size and a history dating back to at least 2010. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses performance optimization tools such as WP Rocket. It integrates Google Analytics and Tag Manager for analytics and tracking, and employs Google reCAPTCHA for form security. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, with clear contact information provided. Overall, the website is trustworthy, well-structured, and provides a good user experience.

P

Pinest AS

pinest.ee

45

Pinest AS is an Estonian manufacturing company founded in 2005 specializing in finger-jointed and laminated wood components. The company emphasizes flexibility in raw materials and production to serve large and medium-sized industrial clients, primarily using domestic pine wood. Their production facility is located in Himmaste village, Põlvamaa. The website reflects a professional and consistent brand presence with clear business and contact information, supported by recognized certifications such as FSC and PEFC. Technically, the site is built on WordPress with modern libraries and tools, including Google Analytics and Tag Manager for tracking, and uses SEO best practices via Yoast. Security posture is generally good with HTTPS enabled and secure forms, though some improvements are needed in script handling and security headers. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the website is trustworthy and well-positioned in its market segment.

Limegrow is a small Estonian-based technology company specializing in ecommerce solutions, website development, and custom software services. Established in 2011, the company positions itself as a provider that brings a startup mindset to corporate clients, offering services such as WordPress, WooCommerce, Magento development, email marketing, and website maintenance. Their market presence is supported by a portfolio of clients and positive testimonials, indicating a trusted regional player in the web development space. Technically, the website is built on WordPress using common industry plugins like WPBakery, Yoast SEO, and Contact Form 7, with Cloudflare DNS and HTTPS enforced. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Security measures include HTTPS and Google Invisible reCAPTCHA on forms, but lack advanced security headers and published security policies. From a security perspective, the site shows a solid baseline with no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies, lack of cookie consent mechanisms, and missing security headers represent compliance and security gaps. The WHOIS data confirms domain legitimacy with consistent registration details and no privacy protection, aligning with the business claims. Overall, Limegrow's website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulatory requirements.

W

Webmarked

webmarked.net

52

Webmarked is a small e-commerce application development company specializing in Shopify apps such as Smart Wishlist and Smart RSS Feed. Their offerings target Shopify store owners aiming to increase sales and improve customer engagement. The website is built on WordPress using the OnePress theme and integrates common plugins like Contact Form 7 and Google reCAPTCHA for form security. The technical infrastructure is standard and moderately optimized for performance and mobile use. Security posture is good with HTTPS enforced and spam protection mechanisms in place, though the absence of security headers and explicit privacy policies indicates room for improvement. The lack of WHOIS data for the domain is a notable concern, potentially impacting trustworthiness. Overall, the site presents a professional business presence with moderate risk due to incomplete transparency in domain registration and privacy compliance.

S

Sentinel Research

sentinel-research.com

59

Sentinel Research is a student-led academic organization dedicated to pioneering innovative counterintelligence solutions to enhance national security. The organization positions itself as a leader in the academic research space with a focus on interdisciplinary approaches and strategic collaborations. Their offerings include research publications, policy recommendations, and educational resources aimed at students, academics, and national security professionals. The website is built on a modern WordPress platform with SEO and analytics integrations, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and security practices.