Security Directory

Christiansen Consulting OÜ is an international consulting firm with offices in Estonia, Denmark, and Greece, specializing in business development, organizational change, and leveraging cultural diversity. Their services include serious games development, team building, and strategic consulting projects across multiple countries. The website is professionally designed using Voog CMS, with good mobile optimization and clear navigation. Technically, it uses modern JavaScript libraries and supports HTTPS with no detected vulnerabilities. However, the site lacks privacy and cookie policies, security headers, and incident response information, which are important for compliance and security posture. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and trustworthy but could improve in privacy compliance and security best practices.

P

PRIA

pria.org

60

PRIA is a well-established non-profit organization founded in 1982, specializing in participatory research, training, and capacity building to empower citizens and civil society in India and globally. The organization focuses on gender equality, sustainable urban futures, and participatory governance, positioning itself as a reputable leader in its sector. The website reflects a mature digital presence with good content quality and consistent branding. Technically, the site uses modern JavaScript libraries and CSS frameworks, hosted via GoDaddy, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and published security policies. Privacy compliance is basic, with no cookie consent mechanism despite use of tracking tools. Overall, PRIA demonstrates strong business credibility and trustworthiness, though improvements in security and privacy practices are recommended.

C

For Sale Page

copterline.com

51

The website copterline.com currently serves as a domain parking and sales page hosted by the Spaceship.com marketplace platform. It does not represent an active business but offers the domain for sale with a fixed price and option to make an offer. The site targets domain investors and buyers, providing secure payment options and transaction support. The branding is consistent with the Spaceship marketplace, and the site includes a contact form for potential buyers to submit their information. Technically, the site uses standard HTML, CSS, and JavaScript, hosted on Spaceship's CDN infrastructure, with moderate performance and good mobile optimization. However, the site lacks advanced SEO, accessibility features, and security headers. The WHOIS data shows inconsistencies such as a future creation date and missing registrant details, which lowers trustworthiness. No privacy, cookie, or terms of service policies are present, and no direct company contact emails or phone numbers are provided. Overall, the site is functional for domain sales but lacks comprehensive business and security information.

P

Publicon OÜ

publicon.ee

52

Publicon OÜ is a professional conference organizer based in Estonia with over 10 years of experience. The company specializes in organizing traditional, virtual, and hybrid conferences both locally and internationally. The website is built on the Wix platform, indicating a moderate level of digital maturity with standard Wix technologies and scripts. The site is mobile-optimized and presents a professional design with clear navigation and relevant content for its target audience. Security posture is adequate with HTTPS enforced and some JavaScript hardening, but lacks explicit security headers and visible privacy or cookie policies. Overall, the website is trustworthy but could improve in privacy compliance and security transparency.

R

riks.no - Domain for sale

riks.no

51

The website riks.no is currently a minimal placeholder page indicating the domain is for sale. It does not represent an active business or service provider. The site is targeted at potential domain buyers and is operated likely by a domain brokerage service (websecured.io). The technical infrastructure is basic, using standard JavaScript and Google Fonts with AMP markup, but lacks advanced frameworks or CMS. Security posture is minimal with no detected security headers or privacy policies, and no HTTPS status was explicitly provided. The site does not collect user data beyond a mailto contact link, indicating low privacy compliance. Overall, the site is low risk but also low trust and low business credibility due to its placeholder nature.

B

Bitly, Inc.

etoro.tw

75

Bitly, Inc. is a well-established technology company specializing in branded link management services, including URL shortening, branded links, QR codes, and analytics. The company serves a broad business audience, including enterprises seeking to enhance their digital marketing and engagement strategies. Bitly holds a strong market position as a trusted platform used by major global brands and maintains a professional and content-rich website that reflects its enterprise stature. Technically, the website is built on WordPress with a modern tech stack incorporating advanced analytics (Snowplow, Google Analytics), consent management (OneTrust), and performance optimization via AWS Cloudfront CDN. The site is mobile-optimized, accessible, and SEO-friendly, demonstrating a mature digital infrastructure. From a security perspective, Bitly demonstrates a strong posture with enforced HTTPS, SOC 2 compliance, and robust privacy and cookie policies with active consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, DNSSEC is not enabled, and explicit incident response contact information is not publicly available, representing areas for improvement. Overall, Bitly presents a low-risk profile with high business credibility and technical maturity. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing incident response transparency to further strengthen trust and security assurance.

BENUEVO OÜ is a small Estonian software development company specializing in advanced web and mobile application solutions for industries such as FinTech, eHealth, SaaS, Supply-Chain, and Automotive. Their business model focuses on delivering mission critical software development and maintenance services to corporate clients. The website presents a professional and consistent brand image with clear navigation and responsive design, targeting companies seeking high quality software engineering. Technically, the website uses modern web technologies including JavaScript, Bootstrap, and Turbolinks, hosted behind Cloudflare infrastructure. Performance and mobile optimization are good, though accessibility and SEO optimizations are basic. Security practices include HTTPS with CSRF token implementation, but lack important HTTP security headers and published security policies. The security posture is moderate with no critical vulnerabilities detected, but improvements are needed in DNS security (DNSSEC), security headers, and formal privacy and cookie policies to enhance compliance and trust. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security hardening to improve trustworthiness and regulatory adherence.

The analyzed URL corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the actual website content is inaccessible or not loaded. Consequently, no business information, metadata, or security policies are present to evaluate. The page is a technical placeholder rather than a functional website, preventing meaningful analysis of business operations or security posture.

The website at axxisgeo.com/lander is a minimal landing page with no substantive business content, contact information, or policies. The domain is registered since 2015 with GoDaddy.com, LLC and shows standard domain protections but lacks DNSSEC. The site uses React and JavaScript technologies and loads Google Adsense scripts, indicating some advertising activity. However, the absence of privacy, cookie, or terms of service policies and lack of contact details reduce trust and compliance posture. Security headers are missing, and DNSSEC is not enabled, representing minor security gaps. Overall, the site appears to be a placeholder or parked domain rather than a fully operational business website.

M

Metsä Group

metsagroup.com

76

Metsä Group is a large enterprise specializing in the production of renewable products derived from northern forests, focusing on sustainable manufacturing that replaces fossil raw materials. The company operates multiple business areas including wood supply, wood products, pulp, paperboard, and tissue products, positioning itself as a key player in the manufacturing and energy sectors in Finland. The website reflects a professional and consistent brand image with clear segmentation of business areas and a focus on sustainability. Technically, the site is built on the Episerver CMS platform and integrates modern analytics and marketing tools such as Microsoft Application Insights, Adobe DTM, Hotjar, and Zaius, all managed with a robust cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which contrasts with the professional presentation and content quality of the site. Contact information is limited to a contact form without direct emails or phone numbers, and no explicit terms of service or security policy pages are present. Overall, Metsä Group's digital presence is mature and secure, but domain registration transparency and enhanced contact details could improve trust and compliance.

I

interUX Usability Engineering Studio OÜ

interux.com

47

interUX Usability Engineering Studio OÜ is a small, Estonia-based consultancy specializing in user experience and usability engineering services across Estonia, Latvia, and Russia. With over 20 years of professional expertise, the company offers a comprehensive suite of UX services including user interface design, expert evaluations, field studies, usability testing, and eye tracking. Their client base spans multiple industries such as retail, insurance, travel, and telecommunications, positioning them as a trusted usability partner in the region. Technically, the website employs a basic but functional technology stack consisting of HTML, CSS, JavaScript, and Google Analytics for visitor tracking. The site is moderately optimized for performance and SEO, with basic mobile responsiveness and accessibility features. However, there is no evidence of a CMS or advanced frameworks, indicating a relatively simple infrastructure. From a security perspective, the domain is well-established with a consistent WHOIS record and domain status protections. However, the website lacks critical security headers, DNSSEC is not enabled, and there is no visible HTTPS enforcement or privacy compliance mechanisms such as privacy or cookie policies. Google Analytics is used without a cookie consent banner, which may raise GDPR compliance concerns. Overall, the website presents a professional and credible business front but requires improvements in privacy compliance and security best practices to reduce risk and enhance trust. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, enforcing HTTPS, and providing incident response information.

N

NEVERHACK

expert-line.com

62

NEVERHACK is a well-established cybersecurity company founded in 2016, providing a broad range of services including risk assessment, identity and access management, managed security services, compliance consulting, and incident response. The company targets businesses seeking to strengthen their cybersecurity posture and comply with regulations such as GDPR and NIS2. The website demonstrates a mature digital presence with modern technologies and a comprehensive content strategy highlighting use cases and expert testimonials. Technically, the site is well implemented with a performant stack and good mobile optimization. Security posture is strong, leveraging HTTPS, domain protections, and offering managed SOC services, although some improvements like DNSSEC and explicit vulnerability disclosure could enhance trust. Privacy compliance is generally good, with a clear privacy policy, but lacks a cookie consent mechanism. Business credibility is high, supported by certifications and detailed service descriptions. Overall, NEVERHACK presents as a credible and professional cybersecurity partner with room for minor enhancements in transparency and privacy controls.

A

AS Eesti Loto

eestiloto.ee

51

AS Eesti Loto operates as the official national lottery provider in Estonia, offering a variety of lottery games such as Eurojackpot, Vikinglotto, Bingo loto, Keno, Jokker, and e-kiirloterii. The website serves as a platform for ticket sales, results checking, and account management, targeting Estonian residents interested in legal lottery gaming. The company holds a strong market position as a government-licensed entity with a medium-sized operational scale. The website's content is well-structured, professionally designed, and provides comprehensive information about games, responsible gaming, and user support.

M

Morek Group

morek.eu

45

Morek Group is a medium-sized Estonian company specializing in manufacturing and distributing high-quality electrical components and electric vehicle charging solutions. With 20 years of industry experience, Morek positions itself as a trusted partner in the energy and transportation sectors, focusing on infrastructure development for electricity and electric cars. The company targets electrical industry professionals and infrastructure developers across Europe, supported by multilingual website content and a clear product catalog. Technically, the website is built on WordPress with modern JavaScript integrations, including Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates good performance, mobile optimization, and SEO practices, with a consent management system for cookies ensuring privacy compliance. The technical infrastructure reflects a mature digital presence suitable for a medium-sized enterprise. From a security perspective, the site enforces HTTPS and uses consent mechanisms but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. Security headers could be improved to enhance protection. Overall, the security posture is solid but could benefit from formalized policies and additional headers. The domain WHOIS data is consistent with the business claims, showing no privacy protection and a domain age appropriate for the company's 20-year history. Contact information is clearly presented, including emails, phone numbers, and physical address, enhancing business credibility. Social media presence on LinkedIn and Facebook supports trust and engagement. Recommendations include publishing security and incident response policies, adding security headers, and considering a vulnerability disclosure program to strengthen security culture and compliance.

A

Ambient Sound Investments

asi.ee

46

Ambient Sound Investments (ASI) is a private asset management firm established in 2003 by four founding engineers of Skype. The company operates as a family office with a focus on investments across venture capital, private equity, listed equity, and real assets, with assets geographically located in Europe, the US, and Asia. The website presents a professional image with clear navigation and relevant business content, targeting investors and professionals interested in diversified asset management. The business model is niche and specialized, leveraging the founders' technology and finance backgrounds. Technically, the website is built on the Voog CMS platform, utilizing standard web technologies such as JavaScript, CSS, and HTML5. The site is mobile optimized and performs moderately well, though accessibility features are basic. The hosting and domain registration are consistent with the business location in Estonia, with no signs of privacy protection or suspicious WHOIS data. External scripts are limited and primarily related to the CMS platform. From a security perspective, the website benefits from HTTPS with a valid SSL certificate, but lacks important security headers and visible security policies. There are no privacy or cookie policies, nor contact information for security incidents or data protection officers. No vulnerabilities or exposed sensitive data were detected, but the absence of key compliance documents and security headers represents a moderate risk. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and regulatory adherence.

Swissôtel Hotels & Resorts operates a luxury hospitality brand with a global footprint, offering premium hotel accommodations, event hosting, and loyalty programs. The website reflects a mature digital presence with multilingual support, rich content, and integrated marketing and analytics tools. Technically, the site uses ASP.NET Web Forms, modern JavaScript libraries, and robust cookie consent mechanisms, ensuring a good user experience across devices. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS data is a notable anomaly but does not detract from the apparent legitimacy of the site given its branding and parent company association. Overall, the site is professional, secure, and compliant with privacy regulations, serving a large luxury hospitality market segment.

S

Sviiter Studio

sviiter.ee

56

Sviiter Studio is a small, independent full-service design-oriented studio based in Estonia, specializing in branding, digital, and print design services. The company positions itself as innovative and client-focused, targeting businesses and organizations seeking comprehensive design solutions. The website is professionally designed using the Squarespace platform, featuring clear navigation, responsive design, and integration with social media channels such as Instagram, Facebook, and Behance. Technical infrastructure leverages modern web technologies and content delivery networks to ensure moderate performance and good user experience across devices. Security posture is strong with HTTPS enforced, HSTS enabled, and a cookie consent mechanism in place, although explicit privacy policies and incident response information are absent. Overall, the website reflects a trustworthy and credible business presence with room for improvement in privacy compliance and security transparency.

ID Production is an event marketing and production company that specializes in creating event identities. Their Facebook business page serves as their primary online presence, showcasing their services and engaging with a moderate follower base of approximately 1.1K followers. The company targets event organizers and marketers seeking professional event marketing and production services. The business model is service-oriented, focusing on event marketing and production within a niche market segment. Technically, the page is hosted on the Facebook platform, leveraging Facebook's infrastructure, React framework, and secure HTTPS environment. The page is well-optimized for mobile devices and provides a good user experience with clear navigation and relevant content. The technical implementation benefits from Facebook's robust hosting and security features, ensuring fast performance and accessibility. From a security perspective, the page benefits from Facebook's platform security, including HTTPS enforcement and secure login forms. No direct security vulnerabilities or exposed sensitive data were detected. However, the page lacks explicit privacy, cookie, or terms of service policies specific to the business, relying instead on Facebook's overarching policies. Contact information is limited to an email address, with no phone numbers or physical addresses provided. Overall, the risk profile of the page is low given its hosting on a reputable platform and absence of suspicious indicators. Strategic recommendations include enhancing privacy compliance disclosures, providing additional contact channels, and maintaining strong administrative security practices. The business should also consider linking to a dedicated website for more comprehensive corporate information and policies.

E

Eton

etonshirts.com

72

Eton is a well-established Swedish brand specializing in premium men's shirts and accessories, with a history dating back to 1928. The company operates a sophisticated e-commerce platform targeting men seeking quality and style in shirts and related apparel. Their market position is strong within the premium retail segment, supported by a comprehensive product range including custom-made options and a membership club offering exclusive benefits. Technically, the website is built on modern frameworks such as Next.js and React, leveraging Contentful CMS and integrating analytics tools like Google Tag Manager and Voyado. The site demonstrates excellent design quality, mobile optimization, and accessibility, providing a seamless user experience. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although the absence of explicit security policy or incident response information is noted. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, the WHOIS data for the domain is missing, which raises concerns about domain registration transparency despite the site's legitimacy and professional appearance. Overall, the website is secure, professional, and user-friendly but would benefit from improved domain registration transparency and explicit security disclosures.

The website ww.ee represents a small Estonian technology-related company operating under the names OÜ Wõrgu Wõlurid and Web Wizards LLC. The business appears to provide web or IT services, targeting both Estonian and English-speaking clients. The domain is well-established since 2010 and hosted by Zone Media OÜ, consistent with the company's location and language. The website content is minimal but accessible, providing basic contact information in two languages. Technical infrastructure is simple, relying on standard HTML, CSS, and JavaScript without advanced frameworks or CMS platforms. Mobile optimization and accessibility are basic but functional. From a security perspective, the site lacks critical security headers and published policies such as privacy, cookie, or terms of service, which indicates compliance gaps and potential risks. No incident response or vulnerability disclosure mechanisms are present. The absence of analytics or tracking scripts suggests minimal user tracking, which is positive for privacy but also indicates limited marketing sophistication. WHOIS data is transparent and consistent with the website's claims, supporting legitimacy. Overall, the website scores moderately on business credibility but falls short on privacy compliance and security posture. The lack of published policies and security best practices presents risks that should be addressed to improve trust and regulatory compliance. Strategic improvements in security headers, policy publication, and incident response readiness are recommended to enhance the site's security and compliance maturity.

A

Actual Reports OÜ

actualreports.com

67

Actual Reports OÜ is a small Estonian technology company specializing in business process automation with a focus on document generation and data collection solutions. Their website presents a professional and consistent brand image, targeting developers, eCommerce merchants, and general users with products such as PDF Generator API, PDFViewer, Printout Designer, and PDFMake. The company leverages a partner ecosystem to provide comprehensive automation tools. Technically, the website uses modern web fonts, Font Awesome icons, embedded YouTube videos, and Google Tag Manager for analytics. Hosting appears to be on Amazon AWS infrastructure. The website is mobile optimized with good SEO practices but lacks advanced accessibility features. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanism. Contact information is limited to email and physical address with no phone or contact forms. Overall, the website is functional and professional but could improve in privacy and security transparency.

SRV Yhtiöt Oyj operates in the Finnish real estate sector, focusing on sustainable and energy-efficient construction of new residential and commercial properties. The website targets potential home buyers and commercial tenants, presenting a professional and modern digital presence built with React and Gatsby technologies. The content is relevant and well-structured, although explicit privacy and cookie policies are not found in the provided content. Security posture is limited due to lack of visible security headers and policies, and no contact information or incident response details are provided. WHOIS data confirms the legitimacy and consistency of the domain registration with the business entity in Finland. Overall, the website demonstrates a good business credibility and technical foundation but requires improvements in privacy compliance and security best practices.

The website terviseamet.ee is currently inaccessible due to a Cloudflare Turnstile human verification challenge, which blocks direct content access. This prevents extraction of meaningful business, contact, or policy information from the site. The domain is registered since 2010 with an Estonian registrar, consistent with the domain's country and likely government affiliation. The technical infrastructure relies on Cloudflare for security and content delivery, indicating a modern approach to protection against automated threats. However, the lack of accessible content limits the ability to assess the website's design, user experience, and compliance with privacy regulations. Security posture is enhanced by Cloudflare's WAF, but no internal security policies or incident response information is visible. Overall, the site appears legitimate but is currently locked behind a security gate, limiting detailed analysis.

I

Indevex

indevex.com

54

Indevex is a small healthcare-focused company specializing in the development of science-based nutritional products, such as NGC®, aimed at supporting health, recovery, and performance. The company positions itself as a niche innovator leveraging clinical research to back its product offerings. The website reflects a professional and consistent brand image with good content quality and SEO optimization, targeting health-conscious consumers and athletes. Technically, the site is built on WordPress 6.8.1, utilizing modern technologies including Google Tag Manager for analytics and Cookiebot for cookie consent management. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service detected. Overall, the domain is legitimate, long-established since 1999, and registered through a reputable registrar without privacy protection, supporting trustworthiness. Strategic improvements in privacy transparency, security headers, and contact information publication are recommended to enhance compliance and user trust.

I

ITM Trade

itm.ee

67

ITM Trade is an established IT services company based in Estonia, providing a broad range of services including programming, SEO, server and workstation administration, marketing, and e-commerce solutions. With over 15 years of experience and a portfolio of more than 300 projects across 35 countries, ITM Trade holds a strong market position as a leader in its industry. The website reflects a professional and consistent brand image targeting businesses seeking comprehensive IT solutions. The technical infrastructure of the website is modern and functional, utilizing Google Fonts, Google reCAPTCHA for form security, and slick sliders for UI elements. The site is mobile optimized and SEO friendly, though there is room for improvement in accessibility and performance optimization. Hosting and domain registration are managed by Zone Media OÜ, a reputable Estonian registrar. From a security perspective, the website employs HTTPS and reCAPTCHA, and implements a cookie consent mechanism compliant with GDPR. However, it lacks advanced security headers and a published security policy or incident response contacts. No vulnerability disclosure or security.txt file is present, which are recommended for enhanced transparency and security posture. Overall, the website is trustworthy and professionally maintained, with a good balance of content quality, technical implementation, and privacy compliance. Strategic improvements in security policies and DNS security would further strengthen its risk profile.

L

Luxury Produtos & Ecommerce

luxurysex.com.br

58

Luxury Sex is a Brazilian e-commerce retailer specializing in adult pleasure products, founded in 2018. The company offers a wide range of products including cosmetics, accessories, vibrators, and fetish items, targeting adult consumers seeking to enhance their intimate experiences. The business emphasizes fast delivery, discreet packaging, and multiple payment options including Pix with discounts, positioning itself as a niche market leader in Brazil. The website is professionally designed with consistent branding and clear contact information, supporting a trustworthy online shopping experience. Technically, the site leverages a modern tech stack including the Yampi e-commerce platform, Google Analytics, Microsoft Clarity, and Mixpanel for analytics and user tracking. It uses HTTPS with a secure checkout subdomain and integrates various marketing and retargeting tools. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Cookie consent mechanisms are implemented, but a dedicated privacy policy page is missing. From a security perspective, the website enforces HTTPS and uses secure payment processing domains. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is consistent with the business information, indicating legitimate domain ownership. Overall, the site demonstrates a good security posture but could improve transparency and compliance documentation. The overall risk is moderate with no critical issues detected. Strategic recommendations include implementing security headers, publishing a security policy and incident response contacts, adding a vulnerability disclosure mechanism, and enhancing accessibility. These improvements would strengthen the site's security posture and compliance, further boosting customer trust and business credibility.

R

Route One

routeone.co.uk

70

Route One is a specialized retailer focusing on skateboarding, snowboarding, and streetwear apparel and accessories, targeting youth and young adults in Europe. The company operates a professional e-commerce platform built on Shopify, offering a broad product range and a user-friendly shopping experience. The website demonstrates good digital maturity with modern technologies, mobile optimization, and integrated marketing tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the business appears legitimate and professionally managed with a solid market position in its niche.

M

MyHome OÜ

myhome.ee

42

MyHome OÜ operates a professional real estate brokerage and property management business primarily serving the Estonian market with additional offerings in Spain. The company provides services including property sales, rentals, management, and interior design. The website reflects a well-established small business with a consistent brand and a focus on quality customer service, as evidenced by testimonials and detailed property listings. The technical infrastructure is based on WordPress with common plugins and integrations such as Google Analytics, Google Tag Manager, and Mailchimp, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, with structured data enhancing search visibility. Security posture is adequate with HTTPS and some security best practices, but lacks advanced headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies and no visible consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced compliance and security transparency.

F

Ferdio

ferdio.com

57

Ferdio is a Denmark-based visual communication agency founded in 2014, specializing in creating infographics, animations, presentations, and other visual storytelling content. The company targets businesses and organizations that require professional visual explanations of complex information. Their market position is supported by a portfolio featuring notable clients and a consistent brand presence across their website and social media channels. Technically, the website is built on WordPress hosted on WP Engine, utilizing modern web technologies such as jQuery, Vimeo API, and Google Analytics, with good mobile optimization and SEO practices. Security-wise, the site uses HTTPS with a valid SSL certificate and implements cookie consent mechanisms compliant with GDPR. However, there is room for improvement in security headers and publishing formal security policies or incident response plans. Overall, Ferdio presents a professional, trustworthy, and well-maintained digital presence with moderate technical maturity and good privacy compliance.

The website lasitamaja.com/lander is a newly registered domain (August 2023) currently serving a minimal placeholder or parking page with no substantive business content. The site uses React and JavaScript technologies and includes Google AdSense scripts, indicating an intent to monetize traffic. However, there is no visible business information, contact details, privacy or cookie policies, or terms of service, which limits trust and credibility. Technically, the site is hosted via GoDaddy with domain status locks enabled but lacks DNSSEC and security headers, which are important for domain and web security. The minimal content and lack of SEO or accessibility features suggest a low level of digital maturity. No forms or user data collection mechanisms are present. From a security perspective, the absence of HTTPS enforcement details, security headers, and privacy compliance measures indicates a basic security posture with room for improvement. The domain registration is consistent with a new business but the lack of transparency and content reduces confidence. Overall, the site scores low on content quality, privacy compliance, and business credibility, with moderate technical implementation.

A

Ave Munde

avemunde.com

63

Ave Munde is a small lifestyle and wellness brand focused on introducing consumers to global foods and promoting healing to embrace the outside world. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and hosting services. The technical infrastructure is standard for Wix sites, with moderate performance and basic mobile optimization. Security posture is basic with HTTPS enabled but lacks important security headers and privacy policies. The absence of WHOIS registration data raises concerns about domain legitimacy. Overall, the site provides basic content and branding but lacks comprehensive security and privacy compliance measures.

The website ww38.mineprofs.org is a domain parking page indicating that the domain mineprofs.org is potentially for sale. It lacks substantive business content, contact information, or any active services. The site primarily serves as a placeholder with advertising scripts and links to domain sale services. The technical infrastructure relies on basic HTML, CSS, and JavaScript, with third-party ad networks such as Google Adsense Domains and Youseasky tracking scripts. Hosting is via Amazon Cloudfront CDN. Security posture is minimal with no visible HTTPS enforcement or security headers, and privacy compliance is weak due to absence of cookie consent mechanisms despite extensive tracking. The WHOIS data is unavailable due to a malformed request, suggesting privacy protection or restricted access, which aligns with the domain's parked status. Overall, the site presents low business credibility and trustworthiness.

A-Film Distributie B.V. is a Dutch film distribution company providing a platform for cinema listings, DVD and Blu-ray sales, and film promotion. The website targets film enthusiasts in the Netherlands, offering detailed information on current and upcoming films, trailers, and classic film collections. The business model focuses on film distribution and consumer engagement through digital content and social media channels. Technically, the site is built on WordPress with MooTools and Yoast SEO, indicating a moderate level of digital maturity with room for improvement in mobile optimization and accessibility. Security posture is adequate with HTTPS enabled but lacks visible security headers and published security policies. Privacy compliance is basic with privacy and cookie policies present but no explicit GDPR compliance statements or data protection officer contact. Overall, the site is professional and trustworthy but could enhance security and privacy transparency to improve user trust and compliance.

F

Fleep Technologies

fleep.io

64

Fleep Technologies operates the website fleep.io, offering a professional messaging platform designed for companies seeking simple and effective digital communication solutions. The service integrates team chats, project communication, and email messaging into a single app, targeting small to medium-sized businesses. The company positions itself as a straightforward, subscription-based communication tool with a free trial, emphasizing ease of use and cross-organization collaboration. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with Google Fonts and Google Analytics integrated for typography and user tracking respectively. Hosting is managed via Amazon AWS DNS services, and the site is mobile-optimized with responsive design elements. SEO practices are well implemented with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled, and there is a lack of explicit security policies or incident response information publicly available. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, indicating GDPR awareness. Overall, the website presents a professional and trustworthy front with good content quality and technical implementation. The absence of direct contact emails or phone numbers on the main pages is a minor gap. Strategic recommendations include enabling DNSSEC, publishing a security policy, and adding a vulnerability disclosure mechanism to enhance trust and security posture.

The website at https://apwiser.com/lander is a minimal landing page with very limited content and no visible business information or user engagement features. The domain is registered with GoDaddy.com, LLC since 2021, consistent with a small business age. The site loads a Google AdSense script indicating some advertising intent but lacks privacy, cookie, or terms of service policies, which are critical for compliance and user trust. Technically, the site uses JavaScript and is hosted on GoDaddy infrastructure, but lacks modern SEO and accessibility features. Security posture is basic with no DNSSEC and no visible security headers, though HTTPS is assumed. No contact information or incident response details are provided, limiting transparency and trust. Overall, the site appears to be a placeholder or underdeveloped landing page with low content quality and business credibility.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) which indicates that the actual website content for the domain 'chromewebdata' is not accessible or blocked. This page primarily contains embedded Chromium offline game scripts and styling, with no real business or website content available. Consequently, no privacy, cookie, or terms of service policies are present, nor is there any contact or security policy information. The technical infrastructure is limited to Chromium's internal JavaScript and canvas-based game code, with no external hosting or CMS detected. Security posture is minimal due to lack of accessible content and absence of security headers or HTTPS enforcement details. The domain WHOIS data is not provided, preventing any domain legitimacy or registration analysis. Overall, the site is inaccessible for meaningful business or security evaluation, resulting in a low AI score and no trust indicators.

W

Wageningen University & Research

wur.nl

69

Wageningen University & Research is a prominent educational and research institution based in the Netherlands, specializing in life sciences, food production, environment, and health. The website serves as a comprehensive portal for academic programs including bachelor, master, and professional courses, targeting students, researchers, and professionals in related fields. The institution holds a strong market position as a leading global university in its sector. Technically, the website employs a modern technology stack including GX WebManager CMS, JavaScript libraries such as jQuery, and integrates advanced analytics and marketing tools like Google Tag Manager, Google Analytics, and Visual Website Optimizer. The site demonstrates good performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS and implements several best practices such as opening external links in new tabs and asynchronous script loading. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are important for transparency and trust. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the website is professional, trustworthy, and technically sound but would benefit from enhanced privacy compliance and explicit security governance disclosures to improve user trust and regulatory adherence.

S

Stagnation Lab

stagnationlab.com

44

Stagnation Lab is a medium-sized Estonian technology company founded in 2013, specializing in designing and building cross-device and platform digital experiences. Their portfolio includes notable projects such as Smart-ID, Telia TV, and Klarvinduer, indicating a strong market presence in the Baltic region and ambitions for wider European adoption. The company offers a broad range of services including design, web and mobile applications, e-commerce, TV and VR apps, as well as IoT and robotics hardware prototyping. Technically, the website is built with modern web standards including HTML5, CSS3, and JavaScript, and integrates Google Tag Manager for analytics. The site is mobile optimized with good SEO practices and clear navigation, reflecting a mature digital infrastructure. Hosting and domain registration are managed through reputable providers, with domain age consistent with the company's founding date. From a security perspective, the site uses HTTPS and has domain registration protections in place, but lacks DNSSEC and security headers which are recommended for enhanced security. There is no visible privacy or cookie policy, which is a compliance gap especially under GDPR. No incident response or security policy information is provided, limiting transparency on security governance. Overall, the website is professional and trustworthy with moderate security posture and some compliance shortcomings. Strategic improvements in privacy documentation, security headers, and DNS security would enhance trust and reduce risk.

H

Harbour Enterprise Group | Latvija, Lietuva, Igaunija

harbour.lv

53

The website www.harbour.lv is a small business site hosted on the Wix platform, targeting a Latvian audience. The site uses standard Wix technologies and integrates Google Analytics for visitor tracking. However, the site lacks comprehensive business information, privacy policies, and contact details, which limits its credibility and user trust. Technically, the site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. Overall, the site presents a minimal digital footprint with room for significant improvements in privacy compliance, security, and business transparency.

The website bpe.ee is currently a parked domain page managed by Zone Media OÜ, an Estonian company specializing in domain registration and web hosting services. The site informs visitors that the domain is registered but not linked to any hosting service and promotes Zone Media's hosting packages in multiple languages (Estonian, Russian, Finnish, and English). The business model focuses on providing domain registration and hosting services primarily in the Baltic region. The website content is basic and serves as a placeholder rather than a fully developed business site. Technically, the site uses standard HTML5, CSS3, SVG graphics, and JavaScript without any detected CMS or advanced frameworks. The hosting provider is Zone Media OÜ, consistent with the WHOIS data. The site is mobile-optimized and loads quickly but lacks advanced SEO and accessibility features. Security headers are minimal, with a Content-Security-Policy header present but weakened by the use of 'unsafe-inline'. HTTPS is implied but not explicitly confirmed in the HTML content. From a security perspective, the site shows basic security hygiene but lacks comprehensive security headers and policies. No privacy, cookie, or terms of service policies are present, indicating low privacy compliance. No contact information or incident response channels are provided, limiting transparency and user trust. No analytics or tracking scripts are detected, suggesting minimal user tracking. Overall, the website is low risk but also low in business credibility and privacy compliance. It functions primarily as a domain parking page with promotional content for hosting services. Strategic recommendations include enhancing security headers, adding privacy and cookie policies, and providing clear contact information to improve trust and compliance.

O

OpenNode LLC

opennodecloud.com

49

OpenNode LLC is a small technology company specializing in open-source infrastructure management software and cloud system implementations. Their product portfolio includes Waldur, an open-source multi-cloud marketplace; Kubernetes ON, a managed Kubernetes service; and the G-Cloud Platform, targeting government cloud solutions. The company targets enterprises and public sector organizations seeking cloud infrastructure management and governance solutions. The website is professionally designed, consistent in branding, and provides clear information about products and services, though it lacks comprehensive privacy and security policy disclosures. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, Leaflet.js for mapping, and Google Analytics for user tracking. Hosting appears to be on AWS infrastructure, inferred from DNS nameservers. The site is mobile-optimized with good navigation and user experience, though accessibility features are basic. Performance is moderate with no critical technical issues detected. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks security headers and published security policies such as privacy, cookie, incident response, or vulnerability disclosure statements. DNSSEC is not enabled, which is a recommended improvement. The WHOIS data shows a consistent and legitimate domain registration dating back to 2010, supporting the company's credibility. Overall, the website presents a moderate security posture and good business credibility but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

R

Reiven Solutions

reiven.eu

47

Reiven Solutions is a small Estonian technology service provider specializing in web-based software, custom IT solutions, hosting, and marketing services. The company targets businesses and organizations seeking tailored web development and IT support. Their website presents a professional and consistent brand image with a focus on quality solutions and client engagement through portfolio showcases and service descriptions. Technically, the site is built on WordPress using the Salient theme and WPBakery page builder, incorporating modern web technologies and responsive design. The use of Matomo analytics and Cookiebot indicates a moderate level of digital maturity with attention to user privacy preferences. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies are lacking. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy and security documentation to improve compliance and user trust.

P

Printon AS

printon.ee

46

Printon AS is a well-established printing company based in Tallinn, Estonia, specializing in a wide range of printing services including books, magazines, catalogs, calendars, and advertising materials. The company positions itself as a comprehensive printing partner offering consultation, repro, printing, binding, post-processing, and logistics services all under one roof. Their market presence is supported by ISO 9001 and ISO 14001 certifications, indicating a commitment to quality and environmental management. The website is professionally designed, multilingual, and provides clear contact information and service descriptions, targeting both business and individual customers in the region. Technically, the website is built on WordPress using the Avada theme and integrates modern web technologies such as Google Analytics, Google reCAPTCHA v3, and Slider Revolution. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be enhanced. Security posture is strong with HTTPS enforced, security headers present, and secure form handling, but lacks a formal security policy or incident response information. Overall, the site is trustworthy and professional with no signs of malicious activity or suspicious behavior. However, improvements in cookie consent mechanisms and formal security disclosures would enhance compliance and user trust. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include implementing cookie consent, publishing security policies, and enhancing accessibility.

О

ОККО

okko.ua

57

ОККО is a large Ukrainian energy and transportation company operating a network of over 400 gas stations across Ukraine. The website is professionally designed, localized primarily in Ukrainian with English alternatives, and targets drivers and vehicle owners. The business model focuses on retail fuel sales and convenience services, positioning ОККО as a major player in the national fuel retail market. Technically, the website uses modern JavaScript frameworks such as Vue.js, integrates Google Tag Manager for analytics, and employs CookieYes for cookie consent management. The site is mobile optimized and SEO friendly with structured data and Open Graph tags implemented. Security posture is good with HTTPS enabled and basic security best practices observed, though explicit security headers and policies are not published. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

Nevercode Ltd. operates Codemagic, a specialized SaaS platform providing continuous integration and delivery (CI/CD) services tailored for mobile app development across multiple frameworks including Flutter, React Native, native Android/iOS, Unity, Ionic, and MAUI. The platform targets mobile development teams seeking to automate build, test, and release workflows to accelerate app delivery. With over 150,000 developers trusting the service, Codemagic holds a strong market position as a focused mobile CI/CD solution with enterprise-grade features and integrations. Technically, the website demonstrates a modern and performant infrastructure hosted on AWS, utilizing JavaScript, CSS, and HTML5 with integrations for Google Tag Manager and Plausible Analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. The platform itself offers cloud-based, fully maintained infrastructure with support for multiple hardware/software configurations, emphasizing ease of use and automation. From a security perspective, Codemagic maintains a robust posture with HTTPS enforced, SOC 2 type 2 and ISO 27001 certifications, and compliance with GDPR and CCPA. The website includes privacy and security statements and cookie consent mechanisms. However, there is no public incident response contact or security.txt file, which could enhance transparency and vulnerability management. No critical vulnerabilities or exposed sensitive data were detected. Overall, Codemagic presents a trustworthy, professional, and technically sound offering with strong compliance and security practices. The domain registration is privacy protected but consistent with the company profile and age. Strategic recommendations include publishing a security.txt file, adding explicit incident response contacts, and enhancing security headers to further strengthen security posture and trust.

R

Ragn-Sells AS

ragnsells.no

68

Ragn-Sells AS operates as a waste management and container rental service provider primarily serving private individuals, housing cooperatives, and businesses in Norway. The company positions itself as a reliable partner offering predictable pricing and professional waste handling solutions. The website is built on a modern technical stack including Episerver CMS and hosted on Microsoft Azure, leveraging advanced analytics tools such as Matomo, Piwik Pro, Microsoft Application Insights, and New Relic for performance and user behavior monitoring. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism in place, although some security best practices like security headers and incident response policies are not explicitly published. The absence of WHOIS data due to privacy protection limits full domain trust verification but does not contradict the legitimacy of the business presence. Overall, the website demonstrates a mature digital infrastructure with room for improvement in transparency and security policy disclosures.

E

Elkdata OÜ

opera.ee

59

Rahvusooper Estonia is a well-established national opera house in Estonia, offering a wide range of cultural performances including operas, ballets, musicals, and concerts. The website reflects a professional cultural institution with a medium-sized operation, targeting the general public interested in performing arts. The business model centers on live event performances and ticket sales, supported by a consistent brand presence and official social media channels. Technically, the website uses modern JavaScript frameworks such as React, integrates Google reCAPTCHA for form security, and employs Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and error monitoring via Sentry, but lacks some security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Overall, the domain registration is consistent and legitimate, supporting the trustworthiness of the site.

K

Kaubamaja

kaubamaja.ee

62

Kaubamaja is a large Estonian retail company operating a professional e-commerce platform offering a wide range of products including beauty, fashion, home, children's goods, and gourmet items. The website is well-branded and targets consumers looking for convenient and safe online shopping experiences. The technical infrastructure leverages modern frontend technologies such as Vue.js and integrates third-party services like Klevu for search and Cookiebot for cookie consent management, indicating a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing explicit security policies and enhancing security headers. Privacy compliance is moderate due to the absence of a clearly accessible privacy policy and terms of service. Overall, the website is trustworthy and professionally maintained, serving a large retail market in Estonia.

I

Interactive Brokers LLC

interactivebrokers.com

67

Interactive Brokers LLC operates a leading global online brokerage platform providing direct access to stocks, options, futures, currencies, bonds, and funds. The company targets a broad audience including individual traders, investors, advisors, and institutional clients. It holds a strong market position supported by a Nasdaq listing, substantial equity capital, and multiple industry awards. The website reflects a mature digital presence with comprehensive product information, multilingual support, and advanced trading technologies. Technically, the site uses modern frameworks like Bootstrap and jQuery, is well optimized for performance and mobile devices, and implements strong security headers and HTTPS encryption. Privacy compliance is evident through cookie consent mechanisms and a detailed privacy policy. However, the absence of publicly available WHOIS data and explicit security policy or incident response contacts slightly reduce trustworthiness. Overall, the site demonstrates a high level of professionalism, security, and user experience suitable for a major financial services provider.

U

United Angels VC

unitedangels.vc

54

United Angels VC is an early-stage venture capital fund based in Estonia, with a portfolio of notable startups such as Bolt and Starship. The fund's investment period for United Angels Fund I has ended, and current investments are made under the Specialist VC Fund II brand. The website reflects a professional and consistent brand presence, with clear business information and legal disclosures. Technically, the site is built on the Voog CMS platform, utilizing modern web technologies and is mobile optimized. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, though security headers are missing and privacy compliance is limited due to absence of privacy and cookie policies. Contact information is limited but includes a verified company email and physical address. Overall, the site is trustworthy and credible but could improve privacy and security transparency.