Security Directory

G

Golden Harvest Food Bank

goldenharvest.org

0

Golden Harvest Food Bank is a well-established non-profit organization focused on alleviating hunger in Georgia and South Carolina through various food distribution programs, partnerships, and community engagement. The website reflects a mature digital presence with clear calls to action for donations, volunteering, and partnerships. The technical infrastructure is based on WordPress with a modern theme and utilizes popular plugins and tracking tools, indicating a moderate to high level of digital maturity. Security posture is strong with HTTPS enforced and no visible critical vulnerabilities, though some security headers could be improved. Privacy compliance is basic with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is professional and trustworthy, supporting the organization's mission effectively.

S

Sovereign Order of Malta

orderofmalta.int

0

The Sovereign Order of Malta is a historic lay religious Catholic order recognized as a sovereign subject of international law, with a significant global presence in humanitarian and medical aid across 130 countries. The organization operates with a clear mission focused on medical, social, and humanitarian projects, supported by diplomatic activities and a structured governance system. The website reflects this stature with comprehensive content, clear navigation, and multilingual support, targeting a broad audience including members, humanitarian partners, and the general public. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and Owl Carousel, optimized for SEO and mobile responsiveness. Hosting is inferred to be via Cloudflare, ensuring good performance and security. Privacy compliance is robust, featuring a detailed cookie policy and consent mechanism powered by OneTrust, aligning with GDPR requirements. Security posture is strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, explicit security headers could be improved to enhance protection. Contact information is clearly presented with official emails, phone numbers, and physical addresses, reinforcing trust and credibility. Overall, the website demonstrates a mature digital presence suitable for a large international non-profit organization, with strong compliance and security practices. Strategic recommendations include enhancing security headers and continuous monitoring of third-party scripts to maintain security integrity.

Malta Red Cross is a well-established non-profit organization dedicated to humanitarian aid, first aid training, and emergency operational services within Malta. The website provides comprehensive information about their services, volunteering opportunities, donation options, and educational courses. It targets the general public, volunteers, and donors, positioning itself as a trusted national Red Cross society with strong brand recognition and social media presence. Technically, the website is built on ASP.NET Web Forms with common libraries such as jQuery and Bootstrap, integrating Google Analytics and Facebook SDK for tracking and social engagement. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and professional design. However, SEO and accessibility features are basic and could be enhanced. From a security perspective, the site uses HTTPS and avoids exposing sensitive data but lacks important security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure mechanisms are evident. The WHOIS data aligns well with the website's claims, supporting its legitimacy. Overall, the site scores well on business credibility but has room for improvement in privacy compliance and security best practices.

M

MTÜ JCI Estonia

jci.ee

0

JCI Estonia is a small non-profit organization dedicated to empowering young adults aged 18-40 through leadership development, community projects, and international networking. As part of the global JCI network with over 145,000 members worldwide, it holds a reputable position in Estonia with approximately 200 active members and 9 local chapters. The organization aligns its activities with the United Nations Sustainable Development Goals, emphasizing health, education, employment, sustainable consumption, and global cooperation. The website reflects a professional and consistent brand image, supported by active social media channels and partnerships with recognized entities.

C

Curia Generalizia della Compagnia di Gesù

sjweb.info

0

The website represents the Curia Generalizia della Compagnia di Gesù, the central governing body of the Society of Jesus (Jesuits), a large and historic non-profit religious organization founded in 1540. The site provides extensive information about Jesuit spirituality, ministries, news, and global activities, targeting Jesuit members, Catholic faithful, and interested public audiences. It maintains a professional and consistent brand presence with comprehensive content and active social media integration. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses common libraries such as jQuery and Swiper.js. It is hosted behind Cloudflare, ensuring good performance and security. The site enforces HTTPS and includes cookie consent mechanisms with anonymized analytics tracking, reflecting good privacy compliance. However, it lacks explicit security policy and incident response information. Overall, the site is secure, well-maintained, and trustworthy, with minor areas for improvement in security transparency and accessibility.

I

Inspire Malta

inspire.org.mt

0

Inspire Malta is a well-established non-profit organization dedicated to empowering individuals with diverse abilities through education, therapy, social community engagement, and research. The organization serves over 1,700 individuals and their families, focusing on inclusion and support within the Maltese community. Their website reflects a strong commitment to accessibility, GDPR compliance, and community engagement, with clear calls to action for donations and volunteering. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. Overall, Inspire Malta presents a trustworthy and professional digital presence aligned with its mission and business model.

C

Cornerstone Pentecostal Church

cornerstonepentecostal.org.uk

0

Cornerstone Pentecostal Church is a small non-profit religious organization based in the United Kingdom, providing Pentecostal Christian services, community outreach, and online media content. Their website serves as a hub for live and on-demand services, children and youth programs, and community engagement through a quarterly e-magazine. The church targets local community members and online viewers interested in Pentecostal teachings. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, with additional plugins for SEO (Rank Math), cookie consent, and media sliders. Hosting appears to be provided by SiteGround. The site demonstrates good mobile optimization, SEO practices, and moderate performance. From a security perspective, the site enforces HTTPS, implements cookie consent mechanisms, and uses standard security headers. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response information are absent, and no vulnerability disclosure or security.txt files are present. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it could improve transparency around security policies and incident response. The domain registration details align well with the organization's profile, supporting legitimacy and trustworthiness.

S

St. Albert the Great Catholic Community

stalbert.org

0

St. Albert the Great Catholic Community is a well-established non-profit religious organization based in Louisville, Kentucky, founded in 1959. The website serves as a digital hub for parishioners and the local community, offering information on worship services, sacramental preparation, lifelong education, pastoral care, and social concerns. The site also facilitates online giving and promotes parish events, reflecting a community-focused business model. Technically, the website is built on the Wix platform, leveraging modern JavaScript frameworks such as React and integrating various Wix apps for video, events, and music. While the site is functional and professionally designed, mobile optimization and accessibility are basic and could be enhanced. Security posture is adequate with HTTPS and some security hardening scripts, but lacks explicit security headers and incident response information. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and serves its community well but would benefit from improved privacy and security transparency.

S

St. Patrick Center

stpatrickcenter.org

0

St. Patrick Center is a well-established nonprofit organization based in St. Louis, Missouri, dedicated to combating homelessness since 1983. Affiliated as a ministry of Catholic Charities of the Archdiocese of St. Louis, it offers sustainable housing, employment, and healthcare services to vulnerable populations. The website reflects a mature digital presence with clear branding, consistent messaging, and multiple trust indicators such as BBB accreditation and Guidestar listing. The organization targets individuals and families at risk of homelessness, donors, volunteers, and advocates, positioning itself as a leading social service provider in the region. Technically, the website is built on Squarespace CMS, leveraging modern analytics tools including Google Analytics, Facebook Pixel, and TVSquared for tracking and marketing insights. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features could be enhanced. Security posture is solid with HTTPS enforced and use of reCAPTCHA Enterprise on forms, but security headers are minimal and no explicit security or incident response policies are published. Overall, the site is professional and trustworthy, with clear contact information and social media integration. However, the absence of a cookie consent mechanism and limited privacy compliance features suggest room for improvement in GDPR and privacy adherence. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure and incident response policies, and implementing cookie consent to improve privacy compliance.

B

Biedrība “Pēdas LV”

talkas.lv

0

Talkas.lv is a Latvian non-profit organization dedicated to organizing large-scale environmental clean-up events, notably the 'Lielā Talka'. The platform fosters community involvement and environmental stewardship across Latvia and its diaspora. The website is well-branded, content-rich, and provides multiple channels for engagement including social media and donation mechanisms. Technically, it is built on WordPress with a moderate tech stack including jQuery, Bootstrap, and Vue.js, offering a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and secure donation forms, though some improvements in security headers and platform updates are recommended. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, serving an important social cause.

D

Dosta je mržnje

dostajemrznje.org

0

DostaJeMrznje.org is a non-commercial advocacy platform designed to enable users to report hate speech and hate-motivated acts across various public and digital spaces. The website is built as a React single-page application with a focus on simplicity and user safety, including a quick escape button to redirect users instantly to a safe site. The platform targets individuals concerned about hate speech and aims to facilitate reporting and tracking of such incidents. Technically, the site uses modern web technologies such as React and Webpack, and includes Google Fonts for styling. However, it lacks advanced SEO metadata, structured data, and comprehensive accessibility features. Security-wise, the site uses HTTPS and includes a user safety feature but lacks important security headers and published policies, which limits its security posture. No contact or business information is provided, which impacts trust and compliance evaluation. Overall, the site is functional for its purpose but would benefit from enhanced security, privacy compliance, and transparency measures.

H

Hrabri telefon

hrabritelefon.hr

0

Hrabri telefon is a well-established Croatian non-profit organization founded in 1997, providing vital counseling and support services to children, teenagers, parents, and adults. The organization operates multiple specialized helplines, including telephone lines, WhatsApp chat, email support, and forums, positioning itself as a trusted resource in child protection and family support. The website reflects a professional and consistent brand image, targeting a broad audience with clear navigation and relevant content. Technically, the site is built on WordPress with standard plugins and integrates Google Tag Manager for analytics, showing moderate digital maturity. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and explicit incident response policies are absent. Privacy compliance is addressed with cookie consent and privacy policies, aligning with GDPR requirements. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Overall, the site demonstrates a solid foundation for its mission but could benefit from enhanced security policies and technical improvements.

E

ENOC

enoc.eu

0

ENOC (European Network of Ombudspersons for Children) is a non-profit network organization that unites 44 independent children's rights institutions across 34 countries in Europe. The organization focuses on advocacy, participation projects, and dissemination of resources to ensure the respect and implementation of children's rights. The website is professionally designed using WordPress with modern plugins for SEO and analytics, providing a good user experience and clear navigation. The technical infrastructure is mature, leveraging caching, lazy loading, and Google services for performance and tracking. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks some advanced security headers and explicit cookie consent mechanisms. Overall, the website reflects a credible and trustworthy organization with a clear mission and active engagement in children's rights advocacy.

K

Kuća Ljudskih Prava

kucaljudskihprava.hr

0

Kuća Ljudskih Prava is a Croatian non-profit organization dedicated to the promotion and protection of human rights, including freedom of speech and media freedom. The website serves as a platform for news, publications, educational resources, and advocacy activities targeting civil society, legal professionals, and the general public interested in human rights issues in Croatia. The organization maintains a consistent brand presence and provides multilingual support in Croatian and English, enhancing accessibility to a broader audience. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for SEO, multilingual support, and user engagement. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Cookie consent mechanisms are implemented to comply with EU regulations, though explicit privacy and terms of service pages are not found. From a security perspective, the site uses HTTPS with excellent SSL configuration and employs cookie consent banners. However, it lacks advanced security headers and does not provide visible security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration is consistent with the organization's profile, indicating legitimacy and stable operation. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively. Strategic improvements in security policies, privacy documentation, and incident response transparency would enhance compliance and user trust.

N

NGO Online

ngoonline.net

0

NGO Online is a specialized cloud-based software solution designed for NGOs operating in the international development and humanitarian sectors. The platform offers comprehensive program, project, and grant management capabilities, enabling nonprofits to streamline operations, improve collaboration, and ensure compliance. The company positions itself as a trusted partner for NGOs, supported by client testimonials and case studies from reputable organizations. Technically, the website is built on a modern WordPress CMS with Elementor and Slider Revolution, leveraging popular web technologies and fonts for a professional user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and cookie consent mechanisms are absent. Overall, the website reflects a mature digital presence with good business credibility and technical implementation.

D

Digital Advertising Alliance

privacyrights.info

0

PrivacyRights.info is a website operated by the Digital Advertising Alliance, a recognized non-profit organization focused on providing California consumers with tools to exercise their rights under the California Consumer Privacy Act (CCPA). The site offers opt-out tools for websites and apps, along with educational content about privacy rights and the CCPA. The organization is well positioned in the digital advertising privacy space, providing transparency and control mechanisms to consumers. Technically, the site is built on Drupal 7 with a moderate modern tech stack including jQuery and Google Analytics, delivering a good user experience with responsive design and clear navigation. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though explicit security headers and vulnerability disclosure mechanisms are absent. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site demonstrates high business credibility and trustworthiness, though improvements in security best practices and privacy compliance are recommended.

B

Biedrība Ādažu uzņēmēji

adazuuznemeji.lv

0

Biedrība Ādažu uzņēmēji is a non-profit employer organization focused on fostering collaboration among businesses in the Ādaži region of Latvia. The organization represents business interests and facilitates dialogue with government institutions, municipalities, and international organizations. The website serves as an information hub for members and partners, providing news, events, and contact details. The market position is regional with a focus on local business community support and networking. Technically, the website is built on Joomla CMS using the Helix Ultimate template framework and Bootstrap 5 for responsive design. The site is mobile-optimized and presents a professional design with clear navigation. However, performance is moderate and accessibility features are basic. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies, as well as incident response information, indicates compliance gaps. The security posture is moderate but could be improved with standard best practices. Overall, the website is trustworthy and professionally maintained, with clear contact information and legitimate domain registration details. The main risks relate to privacy compliance and security hardening. Strategic improvements in these areas would enhance trust and regulatory adherence.

B

Biedrība “Latvijas Lauku forums”

laukuforums.lv

0

Latvijas Lauku forums is a national-level non-profit organization in Latvia focused on balanced rural development, civic society strengthening, and supporting local initiatives through projects and strategic priorities such as LEADER/SVVA. The website is built on WordPress with Elementor and several plugins, providing a modern and visually appealing platform showcasing their projects, members, and initiatives. Contact information and social media presence are clearly provided, enhancing business credibility. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

B

Biedrība "Jūras zeme"

juraszeme.lv

0

Biedrība "Jūras zeme" is a Latvian non-profit organization dedicated to supporting coastal and rural community development through various projects and cooperation initiatives. The organization targets local communities and project applicants, providing funding and facilitating collaboration to enhance regional development. Their website reflects a professional and consistent brand presence with a focus on project information and community engagement. Technically, the site is built on WordPress with a modern tech stack including accessibility features and responsive design, though some components like WordPress core are slightly outdated. Security posture is moderate with HTTPS enabled but lacking explicit security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and trustworthy but would benefit from enhanced privacy and security measures.

L

Latvijas Nacionālās bibliotēkas Atbalsta biedrība

gaisma.lv

0

Latvijas Nacionālās bibliotēkas Atbalsta biedrība is a Latvian non-profit organization dedicated to supporting the National Library of Latvia through cultural projects, donations, and partnerships. The website serves as an informational and engagement platform targeting Latvian citizens and cultural supporters. The organization maintains a network of partners including governmental and cultural institutions, enhancing its credibility and outreach. Technically, the website is built on Drupal 7 with common modules and libraries such as jQuery and Colorbox. It uses Google Analytics for visitor tracking but lacks modern privacy compliance features such as cookie consent banners or detailed privacy policies. The site is mobile-optimized and presents a good user experience with clear navigation and relevant content. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks important security headers and formal security policies, which could be improved to enhance protection and trust. No vulnerability disclosure or incident response information is provided, which is a gap in security readiness. Overall, the website is functional, trustworthy, and professionally presented but would benefit from enhanced privacy and security compliance measures to align with modern standards and regulations.

L

Latvieši Pasaulē

lapamuzejs.lv

0

Latvieši Pasaulē is a Latvian non-profit museum and research center dedicated to preserving and showcasing the history and culture of Latvians living outside Latvia. The organization offers traveling exhibitions, publications, films, and digital projects that highlight the Latvian diaspora's contributions and experiences worldwide. The website serves as a portal for information about current and upcoming exhibitions, events, and digital resources, targeting Latvian diaspora communities, researchers, and cultural enthusiasts. Technically, the website is built on WordPress with a modern tech stack including Elementor, WooCommerce, and various plugins for content management, digital exhibitions, and GDPR compliance. The site is mobile-optimized and employs cookie consent mechanisms to comply with privacy regulations. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site uses HTTPS and has implemented cookie consent and privacy policies, but lacks explicit security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the website's stated mission and location, supporting its legitimacy. Overall, the website presents a professional and trustworthy digital presence for the museum, with room for improvement in security headers and explicit incident response information. Strategic recommendations include enhancing security headers, adding a vulnerability disclosure page, and improving accessibility features to strengthen compliance and user trust.

D

Drošības profesionāļu asociācija

dpalv.lv

0

Drošības profesionāļu asociācija is a Latvian non-profit professional association dedicated to uniting security professionals across the country. Established in 2021, it serves as the largest and sole organization representing security specialists in Latvia, offering services such as consultancy, education, and advocacy. The association actively engages in international partnerships and projects to enhance security knowledge and professional standards. The website reflects a well-structured and professional digital presence, leveraging WordPress with Elementor and optimization plugins to deliver a responsive and user-friendly experience. Social media integration and partner affiliations further strengthen its outreach and credibility. Security-wise, the site employs HTTPS and avoids exposing sensitive data, though it lacks some advanced security headers and formalized incident response or vulnerability disclosure policies. Privacy compliance is limited, with no visible privacy or cookie policies, which should be addressed to meet GDPR requirements fully. Overall, the association demonstrates a solid market position within its niche, supported by credible partnerships and a clear mission to advance the security profession in Latvia.

M

Misa AB

misa.se

0

Misa AB is a Swedish non-profit organization providing employment support and social services primarily for individuals with disabilities or other barriers to entering the labor market. As part of the WiljaGruppen group, Misa offers a range of services including supported employment, daily activities under LSS, social services under SoL, youth support programs, and vocational training. The company maintains a strong regional presence in Sweden with a clear focus on inclusion and individualized support. Technically, the website is built on Craft CMS and leverages modern JavaScript frameworks and analytics tools, ensuring a responsive and accessible user experience. Security posture is robust with HTTPS, security headers, and CSRF protections in place, alongside a comprehensive cookie consent mechanism. Privacy compliance is well addressed with a detailed privacy policy and GDPR-aligned cookie management. Overall, Misa demonstrates a mature digital presence with strong business credibility and trust indicators.

L

Living Hope Community Church

livinghopepa.org

0

Living Hope Community Church operates as a multi-campus, non-denominational church serving communities in Bucks County, Pennsylvania. The organization focuses on providing worship services, community groups, events, and outreach programs to foster faith and relationships. Their digital presence includes online streaming, a sermon library, and active engagement through social media platforms such as YouTube. The website reflects a medium-sized non-profit entity with a clear mission to share the hope of Jesus and build community. Technically, the website is built on WordPress using Oxygen Builder, leveraging modern JavaScript libraries and integrations with Google Analytics and Mailchimp for marketing and analytics. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Hosting appears to be behind Cloudflare, enhancing performance and security. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and published security policies. No cookie consent mechanism was detected, which may impact GDPR compliance. The site does not expose sensitive data and uses secure forms. Incident response and vulnerability disclosure policies are not publicly available, indicating room for improvement in security transparency. Overall, the website is professional, trustworthy, and well-maintained, serving its community effectively. Strategic improvements in privacy compliance and security policy publication would enhance trust and regulatory adherence.

S

St John Ambulance

sja.org.uk

0

St John Ambulance is the UK's leading first aid charity, providing comprehensive first aid training, supplies, volunteering opportunities, and community services. The website reflects a mature, well-established non-profit organization with a strong market position and clear mission to improve first aid confidence and readiness across the UK. Their digital presence is professional, accessible, and well-branded, targeting individuals, businesses, and volunteers. The site integrates multiple marketing and analytics tools while maintaining GDPR compliance through a robust cookie consent mechanism. Technically, the site uses modern technologies including Episerver CMS, Google Tag Manager, and OneTrust for privacy management, ensuring a good user experience across devices.

V

Victim Support

victimsupport.org.uk

0

Victim Support is a well-established independent charity dedicated to supporting victims of crime and traumatic incidents across England and Wales. The website provides comprehensive information about their services, including free, confidential support, live chat, and local area assistance. The organization maintains a strong market position as a trusted non-profit entity with a clear focus on accessibility and user engagement. Technically, the website is built on WordPress using the Avada theme and integrates modern technologies such as Gravity Forms, Google Tag Manager, and reCAPTCHA to ensure functionality and security. The site demonstrates good performance, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforcement, security headers, and form protections, although no explicit security policy or incident response page is published. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and user-friendly, with minor recommendations to enhance security transparency and incident response readiness.

T

The Scout Association

scouts.org.uk

0

The Scout Association is a well-established non-profit organization dedicated to preparing young people aged 4 to 25 with skills for life through various youth programs and volunteer opportunities. It holds a strong market position in the UK as a leading youth organization, supported by a large membership base and extensive partnerships. The website reflects a professional and comprehensive digital presence, offering resources for youth, parents, and volunteers, along with clear contact and support information. Technically, the website employs modern technologies including Vue.js, Google Tag Manager, Cloudflare for security and performance, and advanced analytics tools such as Visual Website Optimizer and Maze Analytics. The site is well-optimized for performance, mobile responsiveness, and accessibility, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses content security policies, and manages cookie consent effectively. While explicit security policies and incident response information are not directly found, the overall security posture is strong with no evident vulnerabilities or exposed sensitive data. The use of third-party scripts is managed with user consent, enhancing privacy compliance. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable platform for its audience. Strategic recommendations include publishing explicit security and incident response policies, establishing a vulnerability disclosure program, and enhancing transparency around data retention and protection roles.

F

Family Action

family-action.org.uk

0

Family Action is a well-established UK charity dedicated to supporting families at every stage of life through a variety of services including helplines, self-help resources, and local community support. The organization has a strong market position with over 150 years of history and a broad UK-wide presence. Their website reflects a professional and user-friendly digital presence, leveraging modern technologies and adhering to best practices in accessibility, SEO, and privacy compliance. The technical infrastructure is robust, built on WordPress with integrations for analytics, marketing, and user feedback tools. Security posture is strong with HTTPS enforcement, security monitoring, and GDPR-compliant cookie consent mechanisms. Overall, the site demonstrates high trustworthiness and professionalism, supporting the charity's mission effectively.

Hospice Isle of Man is a well-established non-profit organization dedicated to providing palliative and end of life care services to the Isle of Man community. The website clearly communicates its mission, services, and ways to support through donations, volunteering, and events. It targets patients, families, healthcare professionals, and donors with a comprehensive range of hospice-related services including specialized children's care at Rebecca House. The organization maintains a strong community presence and transparent communication channels.

P

Praxis Care

praxisprovides.com

0

Praxis Care is a well-established non-profit organization providing specialized support services for individuals with mental ill health, autism, learning disabilities, and dementia across the UK and Ireland. With over 40 years of experience, the organization operates at a large scale with a significant staff and volunteer base, offering a comprehensive range of care services. The website reflects a strong market position with clear branding, consistent messaging, and a focus on inclusivity and high-quality care. Technically, the website is built on WordPress using modern technologies such as WPBakery Page Builder, jQuery, and integrates advanced SEO and analytics tools including Yoast SEO, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized, accessible, and performs moderately well, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS, implements essential security headers, and provides a robust cookie consent mechanism aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, Praxis Care's website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. Strategic recommendations include publishing detailed security and incident response policies, enhancing performance optimization, and maintaining vigilance on third-party script security to sustain and improve the organization's digital trust and security posture.

T

The Children's Centre

thechildrenscentre.org.im

0

The Children's Centre is a non-profit organization based on the Isle of Man dedicated to supporting children, young people, and families facing difficult life experiences such as bullying, developmental disabilities, poverty, addiction, and domestic abuse. Their services focus on behavioral, learning, and emotional wellbeing, bridging gaps in statutory provision before crises occur. The organization operates a community farm and offers various programs including volunteering and fundraising opportunities. The website is professionally designed using the Squarespace platform, featuring clear navigation, mobile optimization, and active social media integration. Technically, the site employs modern web technologies, secure HTTPS with HSTS, and tracking tools like Google Analytics and Facebook Pixel. However, it lacks a cookie consent mechanism and comprehensive privacy policy details, which are important for GDPR compliance. No security incidents or vulnerability disclosures are published, and no WAF or blocking mechanisms are detected, indicating open accessibility. Overall, the website reflects a credible and trustworthy charity with room for improvement in privacy compliance and transparency.

W

Words on the Waves Writers Festival

wordsonthewaves.com.au

0

Words on the Waves Writers Festival is a small non-profit organization hosting an annual literary festival on the Central Coast of NSW, Australia. The festival features a diverse range of literary events including author talks, workshops, book launches, and family programs, targeting local communities and visitors. The website is professionally designed using WordPress with a modern tech stack and integrates ticketing through a partner domain. The digital infrastructure is mature with good SEO and mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are needed in security headers and privacy compliance. Overall, the website reflects a trustworthy and credible organization with room to enhance privacy and security transparency.

N

News Revenue Hub

fundjournalism.org

0

News Revenue Hub is a US-based 501(c)(3) nonprofit organization dedicated to helping news organizations achieve financial sustainability through a combination of a proprietary contribution management platform and strategic consulting services. The organization has established a strong market position by serving a wide range of newsrooms, from hyper-local to global, and has helped raise over $128 million without relying on paywalls. Their key services include the News Revenue Engine SaaS platform and expert consulting, targeting newsrooms and nonprofit media entities. Technically, the website is built on WordPress, enhanced with modern JavaScript frameworks and SEO tools, and secured with HTTPS and Cloudflare services. The site demonstrates excellent design, mobile optimization, and accessibility, with a professional and trustworthy user experience. Security posture is strong with proper HTTPS and security headers, though privacy compliance could be improved by adding cookie consent mechanisms and publishing security policies. Overall, the website reflects a mature digital presence aligned with its nonprofit mission and industry standards.

K

KAEFER Foundation

kaefer.foundation

0

The KAEFER FOUNDATION is a small non-profit charitable organization established in 2010, focusing on providing support in areas such as disease prevention, education, science, environmental protection, and disaster relief. The foundation maintains a professional online presence with clear mission statements and calls to action for involvement. Technically, the website is built on WordPress with a modern plugin ecosystem including multilingual support and cookie consent management, hosted on a reputable provider. Security posture is solid with HTTPS enforced and multiple security headers, though some improvements in SSL/TLS configuration and HSTS enforcement are recommended. Privacy compliance is well addressed with cookie consent and a privacy policy in place. Overall, the website reflects a trustworthy and credible organization with good digital maturity.

F

Families First

familiesfirst.org

0

Families First is a well-established non-profit organization founded in 1890, dedicated to strengthening families through a holistic approach that includes mental health services, navigator programs, parenting education, and adoption support. The organization maintains a strong market position with recognized certifications such as the Candid Platinum Seal and Charity Navigator Four-Star Rating, reflecting its credibility and trustworthiness in the community. Their target audience primarily includes families in need of psychosocial support and community members interested in contributing to family resilience. Technically, the website is built on a modern WordPress infrastructure utilizing popular plugins like Elementor, JetEngine, GiveWP, and Gravity Forms, which facilitate content management and donation processing. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate and could benefit from further optimization. Analytics are implemented via Google Analytics and Matomo, indicating a moderate level of user tracking. From a security perspective, the site enforces HTTPS and employs some security best practices, including Content Security Policy monitoring and secure payment processing through Stripe. However, it lacks explicit security headers and a visible security or incident response policy, which are recommended for enhanced protection. No critical vulnerabilities or exposed sensitive data were detected. Overall, Families First presents a professional and trustworthy online presence with a solid business model and community impact. Strategic improvements in privacy compliance, security policy transparency, and performance optimization would further strengthen their digital maturity and user trust.

zu Hause e.V. is a small non-profit organization based in Germany dedicated to the social integration of immigrants. The website provides information about integration courses, language learning, homework help, and community projects aimed at supporting immigrants in their adaptation to German society. The target audience primarily consists of immigrants and newcomers seeking educational and social support. The organization operates locally with a focus on community engagement and educational services. Technically, the website uses older JavaScript libraries such as prototype.js and scriptaculous.js, with CSS styling and lightbox functionality. The site appears to have basic mobile optimization and accessibility features but lacks modern CMS or advanced frameworks. Performance is moderate, and SEO is basic with meta tags present but no advanced structured data or Open Graph tags. From a security perspective, the site lacks HTTPS, security headers, and any visible privacy or cookie policies, indicating significant compliance and security gaps. No contact emails or phone numbers are provided on the main page, and no incident response or security policies are evident. These factors reduce the overall trust and security posture of the website. Overall, the website serves its informational purpose but requires urgent improvements in security, privacy compliance, and contact transparency to enhance trustworthiness and protect user data.

1

180 Degrees Consulting

180dc.org

0

180 Degrees Consulting is a globally recognized university-based consultancy focused on providing affordable, high-quality consulting services to non-profits and socially-conscious organizations. With operations in over 30 countries and more than 170 branches, it has established itself as the largest organization of its kind, fostering social impact and leadership development among students worldwide. The website reflects a professional and consistent brand image, supported by strong client testimonials and partner logos, reinforcing its credibility and market position. Technically, the website is built on the Webflow platform, leveraging modern web technologies such as Google Tag Manager, jQuery, and Swiper.js for enhanced user experience and analytics. The site is well-optimized for mobile devices and demonstrates good performance and accessibility standards. However, there is room for improvement in security headers and explicit privacy consent mechanisms. From a security standpoint, the site uses HTTPS with a good SSL configuration and does not expose sensitive data. The absence of security headers and lack of incident response or security policy pages indicate areas for enhancement. Privacy compliance is basic, with privacy and cookie policies present but lacking active consent mechanisms. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security policies, privacy compliance, and security headers would further strengthen its posture and trustworthiness.

T

Trendwerk

trendwerk.at

0

Trendwerk is a well-established Austrian non-profit organization specializing in social-economic enterprises that activate potentials for job seekers and companies. Their services include a job portal, qualification courses, and personnel placement, targeting both individuals seeking employment and businesses facing staffing challenges. The organization maintains a consistent brand presence and partners with multiple social enterprises and official employment agencies, reinforcing its market position in Austria. Technically, the website is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and FontAwesome, and includes accessibility features. However, the site lacks HTTPS in the provided HTML content, which is a significant security concern. SEO and mobile optimization are good, but the absence of security headers and incident response information indicates room for improvement in security maturity. The security posture is moderate to low due to missing HTTPS and security headers, though no critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is adequate with a privacy policy and cookie banner present, but no explicit consent mechanism is implemented. Business credibility is strong with clear contact information, certifications, and trust indicators. Overall, Trendwerk's website is professional and functional but requires urgent security enhancements to protect user data and improve trust. Strategic improvements in HTTPS deployment, security headers, and incident response readiness are recommended to elevate the security posture and compliance.

D

Diakon

diakon.org

0

Diakon is a well-established non-profit organization founded in 1868, providing a broad range of social services including adoption, foster care, behavioral health, affordable housing, and senior services. The organization targets children, youth, families, and older adults, serving nearly 70,000 individuals annually. Their market position is strong within the non-profit social services sector, supported by a consistent brand presence and multiple service offerings. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and Google Tag Manager, indicating moderate digital maturity. The site is mobile-optimized with good navigation and content relevance. Security posture is adequate with HTTPS usage and CSRF protections, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy, with room for improvement in security and privacy transparency.

R

Rhema Gemeinde

rhema.at

0

Rhema Gemeinde is a small non-profit religious community based in Linz, Austria, focused on providing Christian church services, youth and children programs, and community events. The website serves as an informational and engagement platform for members and visitors, offering event details, livestream access, and contact options. The technical infrastructure is based on TYPO3 CMS with common web technologies such as Bootstrap and jQuery, hosted via easyname.eu. However, the site lacks HTTPS encryption, which is a critical security deficiency. Security headers are minimal, and no advanced security or incident response policies are evident. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the site is functional and professionally designed but requires urgent security improvements to protect user data and enhance trust.

D

DRK-Kreisverband Nordwestmecklenburg e. V.

drk-nwm.de

0

DRK-Kreisverband Nordwestmecklenburg e. V. is a regional non-profit organization providing a wide range of social, healthcare, emergency, and community services in the Nordwestmecklenburg area of Germany. The website serves as an information portal for their services, events, and engagement opportunities, targeting local residents, families, seniors, and volunteers. The organization is part of the larger Deutsches Rotes Kreuz network, emphasizing humanitarian aid and social support. Technically, the website is built on TYPO3 CMS and hosted by dt-internet.de, but it lacks a valid SSL certificate, which is a critical security shortfall. The site includes cookie consent mechanisms and uses Google Analytics with IP anonymization, indicating some privacy compliance efforts. However, the absence of HTTPS and modern security headers exposes the site to risks and undermines user trust. Overall, the website is content-rich and professionally designed but requires urgent security improvements to protect visitors and comply with best practices.

W

WOMEN AGAINST VIOLENCE EUROPE

wave-network.org

0

WOMEN AGAINST VIOLENCE EUROPE (WAVE) is a well-established non-profit network comprising over 180 European women’s NGOs dedicated to preventing and protecting women and children from violence. The organization focuses on capacity building, advocacy, research, and awareness raising, positioning itself as a leading entity in the European women's rights sector. Their website reflects a professional and content-rich platform targeting NGOs, professionals, policymakers, and the general public interested in gender equality and violence prevention. Technically, the website is built on WordPress with a modern plugin ecosystem including Gravity Forms, Event Tickets, and MemberPress. While the design and content quality are excellent, technical performance is moderate, and mobile optimization is good. The site uses Matomo for analytics and Borlabs Cookie for privacy compliance, indicating a mature approach to user data and consent. Security-wise, the site suffers from a critical issue: an invalid or missing SSL certificate, resulting in no active TLS protocols and weak encryption posture. Although some security headers are present, the lack of proper HTTPS implementation significantly lowers the security score. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact information and consent mechanisms. Overall, the site is trustworthy and professionally managed but requires urgent remediation of SSL/TLS issues to ensure secure user interactions and maintain credibility. Strategic improvements in security infrastructure will enhance user trust and compliance with modern web standards.

A

Age UK

ageuk.org.uk

0

Age UK is a leading UK-based charity dedicated to supporting older people through a wide range of services including advice, befriending, fundraising, and campaigning. The website reflects a mature and professional digital presence with comprehensive content tailored to its target audience of older adults and their carers. The organization maintains strong branding consistency and trust indicators such as charity registration and regulatory compliance. Technically, the site uses a modern technology stack including ASP.NET, Cloudflare CDN, and analytics tools like Microsoft Azure Application Insights and Google Tag Manager. However, the SSL certificate is invalid and no modern TLS protocols are enabled, which significantly weakens the security posture. Privacy and cookie policies are present and GDPR compliant, supporting good privacy practices. Overall, the site is well designed and user-friendly but requires urgent security improvements to protect user data and maintain trust.

R

Raiffeisen Bank International

stepicceecharity.org

0

Stepic CEE Charity is a non-profit initiative founded in 2006 by Herbert Stepic, affiliated with Raiffeisen Bank International AG, focused on supporting socially disadvantaged groups in Central and Eastern Europe through education and social projects. The website presents a professional and well-structured digital presence with clear donation calls and comprehensive privacy compliance via OneTrust CMP. However, the absence of a valid SSL/TLS certificate significantly undermines the security posture, exposing users to risks. The charity demonstrates good trust indicators and business credibility but lacks published terms of service and phone contact details. Overall, the digital infrastructure uses modern technologies such as Vue.js and Adobe Experience Manager, hosted on Fastly, with moderate user tracking and advertising transparency.

G

GS1 Austria

gs1.at

0

GS1 Austria is a well-established non-profit organization serving as the official barcode and GTIN issuing authority in Austria. It provides a comprehensive suite of GS1 standards and services to businesses across multiple sectors including retail, manufacturing, transportation, and government. The website reflects a mature digital presence with excellent content quality, clear navigation, and strong branding supported by major corporate clients. Technically, the site is built on Drupal 10 with modern JavaScript libraries and integrates Google analytics and marketing tools, but suffers from a critical lack of HTTPS support due to an invalid or missing SSL certificate, which significantly impacts its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Contact information is primarily via contact forms, with no direct emails or phone numbers publicly listed. Overall, the site is professional and trustworthy but urgently needs to address its SSL/TLS configuration to improve security and user trust.

A

Austrian Institute of Economics and Social Philosophy

austrian-institute.org

0

The Austrian Institute of Economics and Social Philosophy is a small non-profit organization focused on promoting classical liberal social philosophy and Austrian economics primarily to a German-speaking audience. The website serves as an educational platform offering blogs, videos, podcasts, and events such as the Austrian Academy. The organization is funded by donations and maintains a professional online presence with consistent branding and active social media channels. Technically, the website is built on WordPress with modern plugins and page builders, but lacks a valid SSL certificate, which is a critical security flaw. The absence of HTTPS significantly undermines the site's security posture despite good privacy compliance and cookie consent mechanisms. No explicit security or incident response policies are published, and no phone contact is provided, only an official email address. Overall, the site is content-rich and professionally designed but requires urgent security improvements to protect user data and enhance trust.

L

Lebenshilfe Österreich

lebenshilfe.at

0

Lebenshilfe Österreich is a well-established non-profit organization dedicated to advocating for the rights and support of people with intellectual and multiple disabilities across Austria. Serving as the umbrella organization for regional Lebenshilfe groups, it offers services including support, advocacy, public relations, and organizes events such as the Austrian Inclusion Prize. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency targeting individuals and stakeholders interested in disability rights and inclusion. Technically, the site is built on WordPress with modern plugins like Yoast SEO and Cookiebot for consent management. It uses Apache hosting with DNS managed by easyname.eu. Accessibility features and structured data are implemented, enhancing user experience and SEO. However, performance metrics are not provided. From a security perspective, the site lacks a valid SSL/TLS certificate, exposing it to significant risks and undermining user trust. No advanced security headers or protocols are configured, and no incident response or security policies are publicly disclosed. Cookie consent is properly implemented, and privacy policies are present and GDPR compliant. Overall, while the website excels in content quality, user experience, and privacy compliance, the absence of HTTPS is a critical vulnerability that must be addressed immediately to protect users and maintain credibility. Strategic improvements in security posture and transparency around security policies are recommended to enhance trust and resilience.

P

Polizeichor Dortmund

polizeichor-dortmund.de

0

Polizeichor Dortmund is a small, local non-profit choir organization based in Germany, founded in 1909. The choir serves as a bridge between the police and the community, inviting all interested individuals to participate regardless of prior choral experience. Their website provides information about rehearsal times, locations, and upcoming events, targeting local citizens and choir enthusiasts. Technically, the website is built on WordPress with a standard Apache/PHP hosting environment and uses common plugins such as Yoast SEO for optimization. However, the site lacks HTTPS, which is a critical security shortfall. The absence of SSL/TLS encryption exposes visitors to potential risks and undermines trust. Security headers are minimal, and no advanced security policies or incident response information is provided. Privacy compliance is basic, with a privacy policy page present but no cookie consent mechanism or GDPR-specific notices. Overall, the website is functional and informative but requires significant improvements in security and privacy to meet modern standards.

L

Lebenshilfe Peine-Burgdorf GmbH

lhpb.de

0

Lebenshilfe Peine-Burgdorf GmbH is a regional non-profit organization dedicated to supporting people with disabilities and those requiring assistance in the Peine district and surrounding areas in Germany. The organization offers a broad range of services including counseling, childcare, residential support, employment and education programs, and leisure activities. Their business model focuses on social integration and empowerment of their target audience, which includes individuals with special needs, their families, and professional caregivers. Technically, the website is built on TYPO3 CMS and uses common web technologies such as Apache server, jQuery, and FontAwesome. While the site is well-structured, mobile-optimized, and content-rich, it lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security shortfall. Performance data is unavailable, but the site appears to have good navigation and accessibility features. From a security perspective, the absence of HTTPS and modern TLS protocols significantly lowers the security posture. Although some security headers are present, key best practices like HSTS enforcement and OCSP stapling are missing. No explicit security or incident response policies are published on the site. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website demonstrates moderate business credibility and good content quality but suffers from critical security deficiencies. Strategic improvements in SSL/TLS deployment and privacy compliance are recommended to enhance trust and security.