Security Directory

Eesti Arst is a well-established Estonian medical journal operated by Celsius Healthcare OÜ, providing professional healthcare news, research, and clinical guidelines primarily for medical professionals in Estonia. The website is built on WordPress and integrates common analytics and marketing tools such as Google Analytics and Facebook Pixel. The technical infrastructure is solid with HTTPS and a mature domain, but lacks some compliance elements such as privacy and cookie policies. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the site presents a professional and trustworthy front for its target audience.

E

Euribor.eu

euribor.eu

55

Euribor.eu is a specialized financial information website focused on providing current and historical Euribor interest rate data. It serves European financial professionals, investors, and consumers seeking authoritative and up-to-date interest rate information. The website positions itself as a premier European interest rate resource with multilingual support to cater to a broad European audience. Technically, the site is built on WordPress 6.8.1, leveraging common plugins such as Weglot for translations, Google Tag Manager for analytics, and Google Adsense for monetization. The site demonstrates good SEO practices, mobile optimization, and a professional design with clear navigation. Security-wise, the website uses HTTPS and loads scripts securely but lacks explicit security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Business credibility is moderate with clear branding and some trust signals but limited direct contact information. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures.

L

LEI suomalaisille yrityksille

lei.fi

55

The website lei.fi provides a specialized online service for Finnish companies to apply for and renew Legal Entity Identifiers (LEI) quickly and reliably. The business is positioned as a niche provider focusing on the Finnish market with value-added services such as multi-year discounts and fast processing times. The company behind the domain is Computernik OÜ, an Estonian-registered entity, which aligns with the domain registration data and registrar information. The website content is professionally presented in Finnish, targeting local businesses needing LEI codes for financial transactions. Technically, the site is built on WordPress using a modern theme (GeneratePress) and common plugins for forms, social sharing, and table of contents. It leverages Cloudflare for DNS and uses Google Analytics for visitor tracking. The site is mobile-optimized and has good SEO practices with proper meta tags and structured data. However, some accessibility features are basic, and security headers are not explicitly detected. From a security perspective, the site uses HTTPS with a good SSL configuration and follows best practices such as opening external links with noopener. No critical vulnerabilities or exposed sensitive data were found. However, the absence of security headers and cookie consent mechanisms indicates room for improvement in compliance and security posture. No incident response or security policy pages are published, which could enhance trust. Overall, the website is legitimate, transparent, and well-aligned with its business purpose. The domain is newly registered but consistent with the business launch timeline. Recommendations include implementing cookie consent, adding security headers, publishing security policies, and enhancing contact options to improve user trust and compliance.

V

Valencia Innovation Capital

valenciainnovationcapital.com

46

Valencia Innovation Capital is a municipal platform launched by the Innovation Department of the Valencia City Council to foster a dynamic, diverse, and creative city ecosystem. It aims to unite all stakeholders in Valencia's innovation and technological entrepreneurship ecosystem to collaboratively drive political and economic transformation towards a sustainable and technologically advanced future. The website is built on WordPress using modern plugins and frameworks, featuring multilingual support and active event programming. Security posture is solid with HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, though DNSSEC is not enabled and security headers are not evident. The domain is newly registered in 2024, consistent with the initiative's launch. Overall, the site demonstrates good technical maturity, privacy compliance, and business credibility.

A

AVAR VISUALS OÜ

avar.ee

36

AVAR VISUALS OÜ operates the website avar.ee, providing specialized services in virtual tours, 3D visualizations, and virtual reality solutions primarily targeting businesses in real estate, hospitality, education, and event management sectors. The company has a solid market presence with over 300 projects completed and more than 4 years of experience, positioning itself as a trusted niche service provider in Estonia. The website showcases a professional design with clear navigation, multimedia content including embedded Matterport virtual tours, and client testimonials enhancing credibility. Technically, the website is built on WordPress 6.8.1 with Bootstrap 4.3.1 and jQuery 3.7.1, integrating modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, and Mouseflow. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Hosting and domain registration are consistent and transparent, with the domain registered since 2012 by Zone Media OÜ. From a security perspective, the site uses HTTPS with good SSL configuration and secure form handling but lacks important security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanisms, which poses a compliance risk under GDPR. Overall, the website is professional and trustworthy with strong business credibility and technical implementation but requires improvements in privacy compliance and security policy transparency to enhance its security posture and regulatory adherence.

W

WebLock

weblockonline.com

51

WebLock is a technology company specializing in cloud-based access control solutions that enable remote management and contactless entry for doors and facilities. Their product suite includes wireless electronic locks, mobile app access, RFID keypads, and integration capabilities with business software, targeting sectors such as rental buildings, hotels, sport facilities, and offices across 11 countries. The company positions itself as a modern, automated access control provider with a strong emphasis on user convenience and business automation. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WPBakery, and various JavaScript libraries, ensuring good SEO and mobile optimization. Security posture is solid with HTTPS enforced and transfer protection on the domain, though improvements are recommended in DNSSEC and advanced security headers. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website reflects a medium-sized, professional business with good market presence and trust indicators.

A

Art Media Agency

artmedia.ee

50

Art Media Agency is a small Estonian digital agency specializing in website creation services, catering to notable clients including marketers, digital agencies, and advertising bureaus. The website demonstrates a professional and consistent brand presence with good content quality and clear target audience focus. The business model revolves around providing tailored website development solutions, positioning itself as a trusted service provider in its niche. Technically, the website is built on WordPress CMS, leveraging modern web technologies such as Google reCAPTCHA for bot protection, Cookiebot for cookie consent management, and common frontend libraries including jQuery and Bootstrap. The site is mobile-optimized and exhibits good SEO practices with structured data and meta tags, although some accessibility features could be enhanced. From a security perspective, the website employs HTTPS and integrates reCAPTCHA to secure forms, alongside a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and published security policies or incident response contacts, which are recommended for improving its security posture. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website presents a low-risk profile with a solid business credibility and technical foundation. Strategic improvements in security headers, privacy policy publication, and incident response readiness would further enhance trust and compliance.

V

Via 3L

via3l.eu

44

Via 3L is a Baltic-based third-party logistics company specializing in warehouse logistics, central warehousing, and international transportation services. The company positions itself as a leading logistics service provider in the Baltic region, targeting businesses requiring efficient supply chain and transport solutions. The website reflects a medium-sized enterprise with a professional digital presence and a clear focus on logistics services. Technically, the website is built on WordPress using modern frameworks like Bootstrap and includes SEO and analytics tools such as Rank Math and Google Analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website uses HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and incident response contacts. No privacy policy or terms of service were found, indicating room for compliance improvement. Overall, the domain registration is consistent with the business claims, enhancing trustworthiness.

Digital Quality Mark is a Polish competition platform operated by Izba Gospodarki Elektronicznej that verifies and certifies the quality and effectiveness of SaaS tools, AI solutions, and agencies serving the e-commerce sector. The platform uniquely combines formal evaluation, pitch presentations, and audits to select and promote top-quality technology providers in Poland's e-commerce market. The website is built on WordPress with common plugins and includes a contact form protected by Google reCAPTCHA. While the site uses HTTPS and has a good SSL configuration, it lacks explicit security headers and published security policies. Privacy compliance is partially addressed via an external privacy policy link and GDPR notices on forms. Overall, the site presents a professional and trustworthy image with strong business credibility but could improve in security transparency and privacy mechanisms.

E

e-Commerce awards

ecpawards.pl

44

e-Commerce awards is a Polish event organizer focused on recognizing excellence in the digital economy and e-commerce sector. The website serves as a platform for promoting the awards competition, providing information about registration deadlines and the gala event. The site is built on WordPress using the Kadence theme and blocks, with modern plugins for forms and cookie consent. The technical infrastructure is solid with HTTPS enabled and hosted by a reputable Polish hosting provider. However, the site lacks explicit privacy and terms of service pages, and no direct contact information or security policies are published, which could impact user trust and compliance. Cookie consent is implemented, and Google Tag Manager is used for analytics and tracking. Overall, the site is professional and functional but could improve in privacy compliance and security transparency.

T

TAUNEX AUTO

taunexauto.ee

41

TAUNEX AUTO is a small Estonian company operating primarily in the transportation and retail sectors, specializing in used vehicle sales, trailer rental and sales, automotive accessories, and related services. The company is based in Pärnu and operates under the parent company Lille Rent OÜ, founded in 2013. Their website reflects a local market focus with clear service offerings and contact channels. The business maintains a consistent brand presence and provides essential information such as company registration and contact details, supporting trustworthiness. Technically, the website is built on WordPress with modern plugins and libraries including jQuery, Swiper.js, and Contact Form 7, enhanced with Google reCAPTCHA for spam protection. The site is mobile-optimized and includes SEO best practices such as meta tags and structured data. Cookie consent mechanisms are implemented in compliance with GDPR, providing users with detailed control over cookie categories. From a security perspective, the site enforces HTTPS and uses reCAPTCHA, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or suspicious content were detected. The domain registration data aligns well with the business claims, indicating legitimacy and consistency. Overall, the website presents a professional and trustworthy digital presence suitable for its business scale and market. Strategic improvements in security headers and transparency policies could further enhance its security posture and compliance.

K

Kasse Paadid OÜ

kasse.ee

40

Kasse Paadid OÜ is a small Estonian boat manufacturer specializing in rowboats, motorboats, and fishing boats, with a history dating back to 1994. The company operates primarily in the transportation sector, targeting boating enthusiasts and customers in Estonia and nearby regions. Their website presents a professional and consistent brand image, offering product information, contact details, and social media links. Technically, the site is built on WordPress 4.7.29 with several plugins and uses jQuery 1.12.4, indicating some technical debt and potential security risks due to outdated software. The website is accessible, mobile responsive at a basic level, and has clear navigation, but lacks modern SEO and accessibility features. Security posture is moderate with HTTPS enabled but missing security headers and outdated components. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms. Overall, the site is functional and credible but requires updates and enhancements to improve security and compliance.

K

Keskuskauppakamari

ilmoituskanava.fi

75

Ilmoituskanava.fi is a Finnish whistleblowing channel service operated by Keskuskauppakamari, providing organizations with an efficient and cost-effective platform to establish whistleblowing channels. The website is professionally designed using WordPress CMS, integrating modern SEO and cookie consent technologies such as Yoast SEO and Cookiebot. The service targets organizations requiring compliance with whistleblowing regulations, positioning itself as a niche government-related service in Finland. The domain registration data aligns well with the business entity, reinforcing legitimacy and trust. Technically, the website employs a standard WordPress stack with essential plugins for forms and analytics, hosted on Finnish nameservers. The site demonstrates good mobile optimization and SEO practices, with structured data enhancing search engine visibility. Cookie consent is implemented with a clear mechanism, supporting GDPR compliance. Security headers and HTTPS are properly configured, contributing to a solid security posture. However, some areas such as accessibility and explicit security policies could be improved. Security-wise, the site shows no signs of vulnerabilities or exposed sensitive data. The use of third-party scripts is standard, with tracking and marketing cookies disclosed via Cookiebot. No incident response or vulnerability disclosure information is present, which could be a gap for security transparency. Overall, the site maintains a good balance of security, privacy, and usability. The overall risk assessment is low, with the site appearing trustworthy and compliant with relevant privacy regulations. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility features, and maintaining regular audits of third-party integrations to mitigate potential risks.

M

Marché des Objets Graphiques

marche-objets-graphiques.com

55

The website 'Marché des Objets Graphiques' serves as an online presence for a recurring event organized by étapes magazine, focusing on graphic and artisanal objects. It targets creative professionals and enthusiasts in France, particularly in Paris, providing a platform for showcasing and selling unique graphic works and crafts. The site is well-structured, visually consistent, and uses modern web technologies including WordPress and Google Analytics for tracking visitor engagement. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the content and branding align with a known magazine entity. Security posture is adequate with HTTPS and spam protection, but lacks comprehensive security headers and visible privacy compliance documentation. Overall, the site is functional and professional but would benefit from improved compliance and transparency measures.

J

Jill Arcaro

jillarcaro.com

30

Jill Arcaro operates a specialized wellness and educational business focused on holistic therapies such as Thai Massage, Reiki, and Access Bars, complemented by educational travel experiences and an artisan retail store. The website is professionally designed using WordPress and WooCommerce, offering a good user experience with clear navigation and mobile optimization. Privacy and cookie policies are well implemented, indicating GDPR compliance. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the site presents a credible business front but requires domain registration verification and enhanced security measures.

H

Harju Elekter Oy

harjuelekter.fi

52

Harju Elekter Oy is a leading Finnish company specializing in electrical and automation technology solutions, serving industrial, energy, and transportation sectors. The company offers a broad range of services including electrical system manufacturing, transformer production, electrical contracting, and electric vehicle charging solutions. Their market position is strong within Finland and internationally, supported by a reputable parent company, Harju Elekter Group. The website reflects a professional and consistent brand image with comprehensive content tailored to B2B clients. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Contact Form 7, and Cookiebot for compliance. The infrastructure is stable with good mobile optimization, SEO practices, and moderate performance. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and use of Google reCAPTCHA, though some security headers could be improved. Overall, the security posture is mature with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR adherence. The domain registration details are consistent and transparent, reinforcing trustworthiness. Strategically, the company should enhance security headers, publish explicit security policies, and maintain regular updates to sustain their strong security and compliance stance.

L

Luwi OÜ

luwi.ee

45

Luwi OÜ operates as a specialized training center in Estonia, providing a broad range of educational services including group and individual training courses, psychological and addiction counseling, and supervision services. The company is recognized as a partner of the Estonian Unemployment Insurance Fund's training card program, which enhances its credibility and market position. The website is professionally designed, multilingual, and offers clear navigation to various training categories and services, targeting individuals and organizations seeking professional development in Estonia. Technically, the website is built on WordPress with a modern technology stack including Bootstrap, jQuery, and several optimization and security plugins. It employs Google reCAPTCHA v3 for form protection and uses cookie consent mechanisms to comply with privacy regulations. The site is hosted by Zone Media OÜ, a known Estonian hosting provider, and demonstrates moderate performance and good mobile optimization. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and published security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with a privacy policy and cookie consent banner. Business credibility is strong with clear contact information, company registration details, and trust signals such as partnerships and certifications. Overall, Luwi OÜ's website presents a trustworthy and professional online presence with room for improvement in security header implementation and formal security policies. The risk level is moderate with no critical issues detected, making it a reliable platform for its users.

D

Dráha národního parku

drahanp.cz

44

Dráha národního parku operates as a specialized regional tourism and transportation information platform focused on the Czech and Saxon Switzerland national parks and surrounding protected areas. The website provides comprehensive travel information including railway routes, bus connections, trip recommendations, ticketing, and timetables, targeting tourists and visitors interested in exploring these natural regions. The business model centers on promoting sustainable travel experiences by train and bus, supported by partnerships with regional transport and tourism organizations. Technically, the website is built on WordPress with common plugins such as LayerSlider, Contact Form 7, and Yoast SEO, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and explicit privacy and incident response policies are absent. Overall, the website is professional and trustworthy, though it would benefit from enhanced privacy documentation and security best practices to improve compliance and user trust.

R

Restaurace Mincovna

restauracemincovna.cz

45

Restaurace Mincovna is a well-established restaurant located in the prestigious Staroměstské náměstí in Prague, offering traditional Czech cuisine with a modern twist and a selection of wines and Pilsner tank beer. The business targets both tourists and local patrons, leveraging its historic ambiance and prime location to maintain a strong market position in the hospitality sector. The website reflects a professional digital presence with clear branding and comprehensive business information. Technically, the website is built on WordPress with modern analytics and marketing tools integrated, including Google Analytics 4 and Google Tag Manager. The site implements a robust cookie consent mechanism aligned with GDPR requirements, enhancing privacy compliance. Performance and mobile optimization are good, though accessibility features are basic. No significant technical vulnerabilities were detected, but security headers could be improved. From a security perspective, the site uses HTTPS and employs cookie consent management, but lacks visible security headers and a public security or incident response policy. The absence of WHOIS data limits domain trust verification, though the website content and business details appear legitimate. Overall, the site demonstrates a moderate to good security posture with room for enhancement in transparency and technical security controls. Strategically, the business should focus on improving security headers, publishing incident response and vulnerability disclosure policies, and obtaining verifiable WHOIS data to enhance trust. Continued investment in privacy compliance and user experience will support sustained market credibility and customer trust.

T

Triorail Bahnfunk GmbH

triorail.com

30

Triorail Bahnfunk GmbH is a specialized technology company focused on developing and supplying GSM-Rail communication modules, modems, and test equipment primarily for the railway and transportation sectors. The company positions itself as a technological leader with a strong emphasis on robust radio reception and compliance with industry standards such as EIRENE and MORANE. Their product portfolio includes various GSM-R modules, terminals, and test systems, with ongoing development in future FRMCS radio modules and active participation in relevant standardization committees. The website infrastructure is built on WordPress with modern plugins and frameworks such as Yoast SEO, Bootstrap, and Contact Form 7, indicating a mature digital presence. The site is well-optimized for SEO and mobile devices, providing a good user experience with clear navigation and professional design. However, the absence of direct contact emails and phone numbers on the homepage, as well as the lack of a cookie consent mechanism, suggests areas for improvement in user engagement and privacy compliance. From a security perspective, the site uses HTTPS with good SSL configuration and secure forms but lacks advanced security headers and published security policies or incident response information. The missing WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and business information appear professional and credible. Overall, the website presents a solid business and technical foundation but would benefit from enhanced transparency in domain registration, improved privacy compliance with cookie consent, and clearer contact information to strengthen trust and security posture.

T

Telefónica México

telefonica.com.mx

51

Telefónica México is a major telecommunications company providing innovative connectivity and telecom solutions to businesses and consumers in Mexico. The website reflects a strong market position with clear branding and comprehensive content tailored to its audience. The company leverages WordPress CMS with modern SEO and analytics tools, indicating a mature digital infrastructure. Security posture is solid with HTTPS and secure forms, though explicit security policies and incident response contacts are not published. Privacy compliance is good with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-optimized for users and search engines.

E

Eesti Infotehnoloogia ja Telekommunikatsiooni Liit

itl.ee

47

Eesti Infotehnoloogia ja Telekommunikatsiooni Liit (ITL) is a well-established Estonian industry association representing companies in the digital technology and telecommunications sectors. Founded in 2010, ITL serves as a key advocate and facilitator for its members, which collectively represent over 70% of the sector's turnover. The website reflects a professional and consistent brand presence, offering comprehensive information about the association's activities, events, and member services. The target audience includes Estonian technology companies, policymakers, and stakeholders in the digital economy. Technically, the site is built on WordPress with common plugins for forms, GDPR compliance, and image lightbox functionality. The site is mobile-optimized and SEO-friendly, with moderate performance and basic accessibility features.

T

Tallinna Kontserdimaja AS

kontserdimaja.ee

38

Alexela Kontserdimaja is a prominent concert hall located in Tallinn, Estonia, recognized as the largest in the Baltic region with seating for up to 1829 visitors. The venue offers a variety of services including event hosting, ticket sales, and catering options such as pre-ordered coffee tables and private champagne salon rentals. The website reflects a well-established business with a domain registered since 2010, consistent with its market presence. The target audience includes cultural event attendees and event organizers in the region. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Fonts, and multilingual support via WPML. SEO is well-implemented using Yoast SEO, and analytics are managed through Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and event information. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, indicating a baseline security posture. However, there is a lack of explicit security headers and no visible incident response or security policy pages, which could be improved. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, which may pose GDPR compliance risks. Overall, the website is professional, trustworthy, and functional, serving its business purpose effectively. Strategic improvements in privacy compliance and security transparency would enhance its security posture and regulatory adherence.

Tudeng TV is a niche Estonian media platform focused on student-related video content and news. The website is built on WordPress and uses several plugins to deliver content and social media integration. The domain is recently registered with a proxy service based in France, which is common for small media sites but reduces transparency. The site is accessible without blocking or WAF challenges and provides basic content and navigation suitable for its target audience. However, privacy compliance is limited, with no cookie consent mechanism detected and only a basic privacy policy page. Security posture is moderate, lacking DNSSEC and security headers, and no incident response or security policies are published. Overall, the site is functional but would benefit from improved security and privacy practices to enhance trust and compliance.

B

Baltic Rail AS

balticrail.com

49

Baltic Rail AS is a medium-sized transportation company specializing in container-train operations and intermodal rail services primarily in the Baltic Adriatic Rail Corridor. Established in 2008 and owned by the Rail World Group, it operates container terminals and warehousing facilities in Estonia and Poland, serving key locations such as Wroclaw, Katowice, Ostrava, and Koper. The company targets businesses requiring efficient rail freight and logistics solutions in Central and Eastern Europe. The website reflects a professional and consistent brand image with clear service offerings and active news updates, indicating ongoing operations and market presence. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, and employs Google reCAPTCHA v3 for form security. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. However, some security best practices such as security headers are missing, and no privacy or cookie policies are published, which impacts compliance. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is a notable concern, as it conflicts with the business history claimed and may indicate domain registration issues. Overall, the site is trustworthy but would benefit from improved transparency and security documentation. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, adding a vulnerability disclosure policy, and resolving WHOIS registration inconsistencies to enhance trust and compliance.

B

Birdeye Capital

birdeyecapital.com

50

Birdeye Capital is a specialized alternative investment fund manager focusing on sustainable forestland investments. Established in 2013 and regulated by the Estonian Financial Supervision Authority, the company offers non-public, closed-ended funds tailored for institutional investors such as pension funds and family offices. Their business model emphasizes long-term sustainable growth and ESG compliance, positioning them as a trusted player in the Baltic investment market. Technically, the website is built on WordPress with modern plugins and libraries, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though lacking advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

Stratum Traffic Engineering GmbH is a specialized consulting company in the Intelligent Transport Systems (ITS) and traffic engineering sector, offering services such as traffic analysis, road safety, project management, and business development for ITS SMEs. The company targets organizations seeking expertise in traffic audits, modeling, and tolling systems, positioning itself as a niche ITS SME with international market development capabilities. The website reflects a professional and consistent brand image with clear service offerings and contact information, supported by social media presence on Facebook and LinkedIn. Technically, the site is built on WordPress using popular plugins and themes, delivering moderate performance and good mobile optimization. However, the site lacks advanced security headers and explicit privacy or cookie policies, which are critical for compliance and trust. The domain registration is consistent and transparent, with no privacy protection, supporting the legitimacy of the business. Overall, the website is functional and credible but requires improvements in privacy compliance and security posture to enhance trust and regulatory adherence.

K

Kahjurite Tõrje

kt.ee

38

Kahjurite Tõrje is a small Estonian pest control service provider specializing in fast and effective pest control solutions including gel treatments for insects such as wasps, cockroaches, and ants. The company has an established online presence with a professionally designed WordPress website optimized for SEO and mobile devices. The website content is relevant and clearly structured, targeting local Estonian customers seeking pest control services. Technically, the site uses modern frameworks like Bootstrap and integrates Google Analytics and reCAPTCHA for security and analytics purposes. However, the absence of privacy and cookie policies indicates a gap in compliance with GDPR and general privacy best practices. Security posture is moderate with HTTPS enforced and reCAPTCHA implemented, but lacks important security headers and explicit incident response information. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

W

Wiru õlu

wiru.ee

39

Wiru õlu is a small Estonian craft beer brand with a professionally designed WordPress website launched in December 2023. The site focuses on presenting the brand's artisanal beer products with rich descriptive content targeting beer enthusiasts. The technical infrastructure is modern, leveraging WordPress CMS, jQuery, and popular plugins such as Contact Form 7 and All in One SEO, hosted likely by Zone Media OÜ in Estonia. The website is accessible, mobile-optimized, and SEO-friendly with structured data implemented. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit security or privacy policies are published. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site demonstrates a good baseline for a new small business but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

O

Outline Reklaam

outline.ee

39

Outline Reklaam is an established Estonian marketing and advertising agency with over 20 years of experience. They offer a comprehensive suite of services including graphic design, internet solutions, photography, 3D, video marketing, and website development. Their business model focuses on in-house content creation and serving a diverse client base, as evidenced by their portfolio and testimonials. Technically, the website is built on WordPress using the Avada theme and integrates common plugins such as Contact Form 7 and MonsterInsights for analytics. The site is moderately optimized for performance and mobile devices, with basic accessibility features. Security posture is adequate with HTTPS enabled and reCAPTCHA on forms, but lacks visible security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security transparency.

R

Reiting PR OÜ

reiting.ee

45

Reiting PR OÜ is an established Estonian company specializing in adult education, business training, and accounting services. Founded in 2010, it operates a professional website offering a wide range of practical courses, including entrepreneurship, personal work, logistics, IT, and language training. The company also provides reliable accounting services for businesses and housing associations, alongside psychological and addiction counseling. It holds a reputable market position as a partner of the Estonian Unemployment Insurance Fund (Töötukassa) and collaborates with several recognized local organizations. The website is well-structured, content-rich, and targets adult learners, entrepreneurs, and professionals seeking skill development.

A

ALPA Kids

alpa.ee

50

ALPA Kids is an educational technology company specializing in Estonian-language digital learning games for children aged 3 to 8. The company collaborates with educators and child development experts to create culturally relevant and curriculum-aligned content. With over 2 million downloads and usage in more than 500 educational institutions across 170 countries, ALPA Kids holds a strong market position in the niche of early childhood digital education. Their business model includes app distribution via major app stores and direct engagement with educational institutions. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various SEO and analytics plugins, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA usage, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and well-branded, supporting ALPA Kids' credibility in the education sector.

RAKETT OÜ is a small independent advertising and design agency specializing in the food industry, operating primarily in Northern Europe with offices in Tallinn and Helsinki. The company showcases a professional portfolio with notable clients, emphasizing creative advertising and design services. The website is built on WordPress using modern plugins and frameworks, indicating a moderate level of digital maturity. Security measures such as HTTPS and Google reCAPTCHA are implemented, and a cookie consent mechanism is active, though explicit privacy and terms of service pages are absent. WHOIS data is privacy protected, which is common for small agencies, and no suspicious indicators were found. Overall, the website presents a trustworthy and professional image with room for improvement in compliance documentation and security headers.

Best Programs is a small, non-subsidized, and non-affiliated educational service provider specializing in budget internship and experiential learning programs worldwide, with a focus on language enhancement, edutravel, NGO, and work experience. The company targets students and young professionals seeking affordable international internship opportunities, primarily operating from Spain. The website is professionally designed using WordPress CMS and incorporates modern plugins for SEO, analytics, and user engagement. It offers clear navigation, mobile optimization, and comprehensive content relevant to its audience. Security posture is solid with HTTPS enabled and cookie consent implemented, though some security headers could be improved. Privacy policies and GDPR compliance are addressed adequately. WHOIS data is unavailable due to privacy protection, which is typical for small businesses. Overall, the site presents a trustworthy and professional front with moderate technical sophistication and good business credibility.

V

Vanalinna Ehitus

vanalinnaehitus.ee

44

Vanalinna Ehitus is an established Estonian construction company specializing in building construction under main contracting agreements. Founded in 2010, the company emphasizes flexibility, client-centric approaches, and quality workmanship. Their website reflects a professional and modern digital presence with multilingual support for Estonian, Finnish, and Swedish audiences. The company showcases a portfolio of projects and maintains active social media channels, reinforcing their market position. Technically, the site is built on WordPress with modern libraries and optimizations, delivering good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is addressed with a privacy policy and cookie consent mechanism. Overall, the website supports the company's credibility and business goals effectively.

M

Mediapark

singleton.ee

58

Mediapark is an established digital agency specializing in modern web development, mobile app creation for Android and iOS, UI/UX design, testing, and support services. With a domain age dating back to 1995 and a broad international presence including offices across Europe and Asia, Mediapark serves a diverse clientele including notable brands such as Red Bull and Vodafone Zambia. The company positions itself as a one-stop-shop for digital product development, targeting businesses seeking scalable and high-performance digital solutions. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager. The site is mobile-optimized and demonstrates good design and navigation quality. Hosting and DNS services leverage Cloudflare, enhancing performance and security. However, DNSSEC is not enabled, and security headers are absent, indicating room for security improvements. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA v3 for form protection, but lacks published security policies and incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which could expose the company to regulatory risks. Contact information is available primarily via contact forms and office addresses, with no direct emails or phone numbers publicly listed. Overall, Mediapark presents a professional and credible digital presence with a mature business history and solid technical foundation. Strategic enhancements in privacy compliance, security headers, and DNS security would further strengthen their security posture and regulatory adherence.

A

Aurightec

eolane.ee

54

Aurightec is a professional electronics manufacturing service provider based in Estonia, offering industrial services to support business partners in delivering cutting-edge electronic products. The company holds multiple ISO certifications, indicating a strong commitment to quality and safety standards. Their website is well-designed, SEO-optimized, and compliant with GDPR and cookie regulations, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and security features such as Google reCAPTCHA and cookie consent management. Security posture is solid with HTTPS and bot protection, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, Aurightec presents a trustworthy and professional business front with clear contact information and social media presence.

U

Ukrainian Marketing Project (UMP)

ump.ua

50

Ukrainian Marketing Project (UMP) is an established independent marketing and media research company based in Ukraine since 1996. It specializes in providing qualitative and quantitative research services, focus groups, and periodic studies, serving advertisers, advertising agencies, and broadcasters. The company holds recognized certifications such as IRIS, ESOMAR, and UAM, reinforcing its market credibility. Technically, the website is built on WordPress with a moderate tech stack including jQuery and Google reCAPTCHA, offering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and spam protection, though it lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

V

Via 3L

via3l.com

40

Via 3L is a Baltic-based third-party logistics company specializing in warehouse logistics, central warehousing, and international transportation services. Positioned as a leading logistics provider in the Baltic region, the company targets businesses requiring efficient supply chain and transport solutions. The website reflects a professional digital presence with clear branding and relevant service descriptions. Technically, the site is built on WordPress with modern plugins and frameworks, offering good mobile optimization and SEO readiness. Security posture is adequate with HTTPS enabled and domain transfer protections in place, though improvements such as DNSSEC and enhanced security headers are recommended. Privacy compliance is basic, with cookie consent implemented but lacking explicit privacy and terms of service pages. Overall, the website demonstrates moderate risk with room for enhanced compliance and security maturity.

A

Advokaadibüroo LINDEBERG

lindeberg.legal

30

Advokaadibüroo LINDEBERG is a well-established Estonian law firm providing comprehensive legal services across major law domains including private law, public law, IT and intellectual property, and dispute resolution. The firm serves a diverse clientele including businesses, individuals, and the public sector, with a strong reputation in litigation and recognized partnerships such as with the Estonian E-commerce Association. Their website reflects a professional and consistent brand image, multilingual support, and a broad service offering. Technically, the site is built on WordPress with WooCommerce and enhanced by various plugins for SEO, analytics, and marketing, demonstrating a mature digital presence. Security posture is solid with HTTPS and domain transfer protections, though improvements like DNSSEC and enhanced security headers are recommended. Privacy and cookie policies are present and GDPR compliant, with clear contact information and active use of analytics and marketing pixels under consent mechanisms. Overall, the site is trustworthy and professionally maintained, supporting the firm's market position as a leading legal service provider in Estonia.

H

Holini

holini.com

66

Holini is a specialized Google Ads and analytics agency focused on serving B2B technology companies. The company emphasizes deep expertise by employing only senior specialists, avoiding one-off hacks, and following systematic growth and testing processes. Their market position is that of a niche expert agency with strong trust signals including Google Partner status, Premier Partner Awards, and positive client testimonials. The website content and branding are consistent and professional, targeting CMOs and marketers in the B2B tech sector. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager, showing a mature digital infrastructure with good SEO and mobile optimization. Security posture is solid with HTTPS enabled and consent management implemented, though some security headers could be improved and DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain registration is consistent with the business history and shows no suspicious patterns. The site demonstrates good privacy compliance with a comprehensive privacy policy and cookie consent mechanism.

M

Mikroonik OÜ

mikroonik.com

48

Mikroonik OÜ is a small Estonian manufacturing company specializing in precision micro-component production with over 20 years of experience. Their website presents a professional image with clear business focus on aerospace, automotive, medical, and electronics sectors. The company holds an ISO 9001 certification, which is prominently displayed, enhancing their credibility. The website is built on WordPress with common plugins for SEO and contact forms, hosted likely by Zone Media based on DNS information. The site is mobile optimized and offers good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, but no social media presence or incident response information is found.

U

Unterwegs Celle

unterwegs-celle.de

48

Unterwegs Celle is a small retail business specializing in outdoor equipment and apparel, targeting customers in the Celle region of Germany. The website serves as an online presence to complement their physical store, showcasing top outdoor brands and providing contact information for customer engagement. The business positions itself as a local specialist in outdoor retail, with a focus on quality brands and customer service. Technically, the website is built on WordPress CMS, utilizing popular plugins such as Smart Slider 3, Contact Form 7, and Cookiebot for cookie consent management. Hosting is provided by Timme Hosting, with multiple name servers indicating a stable infrastructure. The site demonstrates good SEO practices, mobile optimization, and basic accessibility features, though there is room for improvement in security headers and accessibility compliance. From a security perspective, the site enforces HTTPS and uses Cookiebot to manage user consent, including blocking of scripts until consent is given. Google Analytics is implemented with IP anonymization to enhance privacy compliance. However, explicit security policies, incident response contacts, and advanced security headers are not present, indicating a moderate security posture suitable for a small retail business but with opportunities for enhancement. Overall, the website is professional, functional, and compliant with GDPR requirements regarding privacy and cookie management. The risk level is moderate, with no critical vulnerabilities detected. Strategic recommendations include improving security headers, adding explicit security and incident response policies, and maintaining up-to-date software to mitigate potential risks.

T

Timbeco Woodhouse OÜ

timbeco.ee

51

Timbeco Woodhouse OÜ is a well-established Estonian company specializing in the design, manufacturing, and turnkey construction of wooden element and modular buildings. With over 31 years of experience and a team of more than 120 specialists, Timbeco serves private clients, developers, construction companies, and municipalities primarily in Estonia and the Nordic region. The company emphasizes sustainability, quality, and innovation, supported by multiple ISO certifications and industry awards. Their digital presence is built on a modern WordPress platform with SEO and analytics tools, ensuring good user experience and content relevance. Security measures include HTTPS, reCAPTCHA, and standard WordPress security plugins, though some security headers could be improved. Overall, Timbeco demonstrates a strong market position with credible business practices and a professional online presence.

A

Astro Baltics

astrobaltics.eu

47

Astro Baltics is a well-established Nordic IT company founded in 1998, specializing in comprehensive and flexible IT solutions for businesses of all sizes. Their offerings include the NOOM economic software suite, the Cloudics cloud platform tailored for fuel stations, car washes, and retail, as well as custom software development and IT hardware sales with maintenance services. The company maintains a strong market position in Estonia and the surrounding region, supported by ISO 27001 certification and a professional online presence. Technically, the website is built on WordPress with modern plugins and SEO optimizations, providing a good user experience and mobile responsiveness. Security practices are solid, with HTTPS, reCAPTCHA, and privacy consent mechanisms in place, although some security headers could be enhanced. Overall, the site reflects a mature digital infrastructure aligned with business goals.

Z

Zone Media OÜ

artist.ee

49

Artist.ee is a specialized Estonian marketing and media company operating since 2010 under Zone Media OÜ. The company focuses on retail and service environments, offering services such as marketing, media, audio design, studio production, technical audio solutions, and advertising screens. Their market position is strong within Estonia, targeting retail businesses and brands aiming for effective in-store and service environment communication. The website is professionally designed, mobile-optimized, and uses WordPress CMS with modern libraries and Google Analytics for tracking. However, it lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is good with HTTPS enabled and no exposed sensitive data, but missing security headers and vulnerability disclosure mechanisms indicate room for improvement. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

M

Marketex Offshore Constructions

moc.ee

60

Marketex Offshore Constructions is a specialized manufacturer of complex steel structures serving the Offshore Oil & Gas, Renewables, Infrastructure, and Industrial sectors. Founded in 2014 and operating under the parent company BLRT Grupp, the company emphasizes quality and compliance with industry standards such as NORSOK, DNV GL, ABS, and BV. Their modern facilities support large fabrication projects primarily targeting the North Sea region and beyond. The website reflects a professional digital presence with clear business information and a focus on safety and quality through their QHSE policies. Technically, the site is built on WordPress with modern libraries and includes Google Analytics and Tag Manager for tracking, complemented by a cookie consent mechanism.

A

Anju Software, Inc.

anjusoftware.com

61

Anju Software, Inc. is a medium-sized, customer-focused software company specializing in life sciences technology solutions. Their offerings include adaptable software suites for clinical research, medical affairs, and data science, targeting biopharmaceutical companies and CROs globally. The company positions itself as a trusted partner to top pharmaceutical firms, providing tools that accelerate clinical trials and enhance patient outcomes. The website reflects a professional and consistent brand image with comprehensive product and service information. Technically, the website is built on WordPress with modern frameworks like Bootstrap and Elementor, integrating multiple analytics and marketing tools such as Google Analytics, LinkedIn Insight, and VWO. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced. Security measures include HTTPS enforcement and reCAPTCHA on forms, but additional security headers could improve the security posture. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is supported by clear privacy and cookie policies with consent mechanisms, though no explicit terms of service or vulnerability disclosure policies were found. The absence of WHOIS data reduces domain trustworthiness, suggesting privacy protection or unregistered status, which should be verified. Overall, Anju Software presents a credible and professional online presence with strong business and technical foundations. Strategic improvements in security headers, accessibility, and transparency policies would further enhance trust and compliance.

W

Walless

walless.com

66

Walless is a modern Baltic law firm established in 2008, providing bespoke legal services focused on client trust, openness, and innovation. The firm targets businesses in the Baltic region and offers services including arbitration, dispute resolution, and corporate legal advisory. Their market position is that of a growing regional legal services provider with a professional online presence. Technically, the website is built on WordPress, leveraging modern plugins and technologies such as Google Analytics, reCAPTCHA, and GDPR cookie consent mechanisms. The site is well optimized for performance and mobile devices, with good SEO and accessibility features. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website reflects a credible and professional business with a high trustworthiness rating.

W

WERMO AS

wermo.ee

40

WERMO AS is an established Estonian furniture manufacturer with over 75 years of experience in crafting high-quality furniture for living rooms, home offices, and dining rooms. The company leverages traditional craftsmanship combined with modern production technologies to meet discerning customer expectations. Their website reflects a medium-sized manufacturing business targeting consumers and businesses seeking premium furniture products. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Contact Form 7, with multilingual support via WPML. The site is hosted likely by Zone Media OÜ, an Estonian registrar and hosting provider. Security-wise, the site uses HTTPS with good SSL configuration and integrates Google reCAPTCHA to protect forms. However, it lacks explicit privacy, cookie, and security policies, as well as vulnerability disclosure mechanisms, which are important for compliance and trust. Overall, the website is professional and functional but could improve its privacy and security transparency.