Security Directory

S

Sdružení pěstounských rodin, z. s.

konferencepestouni.cz

0

The website www.konferencepestouni.cz represents a professional and well-structured platform for the 'Hranice péče' conference organized by Sdružení pěstounských rodin, a Czech non-profit focused on foster care and social-legal protection of vulnerable children. The site provides comprehensive information about the conference program, speakers, registration options, payment details, and contact information. It is supported by notable patronages including the wife of the Czech president and the government commissioner for human rights, enhancing its credibility. Technically, the site is built on WordPress 6.8.3 with modern plugins such as Yoast SEO and W3 Total Cache, and uses HTTPS with a good SSL configuration. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, some broken lazy loading images and the absence of explicit privacy and cookie policies indicate areas for improvement. From a security perspective, the site employs HTTPS and some security headers but lacks advanced headers like CSP or HSTS. No security.txt or incident response information is publicly available. The WHOIS data for the domain is missing or not publicly accessible, which reduces trust in domain legitimacy despite the professional appearance and official endorsements. Overall, the site is a credible and professional resource for its target audience but should address privacy compliance and domain registration transparency to strengthen trust and security posture.

S

Sdružení pěstounských rodin

pestouni.eu

0

The website pestouni.eu serves as an information system for the Sdružení pěstounských rodin (Association of Foster Families) in the Czech Republic. It provides detailed listings of seminars, webinars, support groups, and family events aimed at foster families and professionals involved in foster care. The site targets a niche non-profit audience and offers educational and community-building services. The market position is specialized within the foster care support sector in the Czech Republic. Technically, the website is built with basic HTML and CSS, hosted by WEDOS Internet, a reputable Czech hosting provider. The site lacks modern CMS or frameworks and shows basic mobile optimization and accessibility. Performance is moderate, with clear navigation and structured content but limited advanced technical features. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No contact information for security incidents or data protection officers is present. The site uses HTTPS (assumed from domain and hosting) but does not demonstrate advanced security best practices. There are no signs of vulnerabilities or exposed sensitive data in the provided content. Overall, the website is safe and appropriate for its audience, with no adult or questionable content. However, it requires improvements in privacy compliance, security posture, and contact transparency to enhance trust and regulatory adherence.

Budoucipestouni.cz is a professionally maintained website operated by Sdružení pěstounských rodin z.s., a Czech non-profit organization dedicated to supporting foster families and promoting foster care and adoption. The site offers a variety of services including online and email counseling, educational quizzes, webinars, and informational infographics, targeting prospective foster parents and stakeholders in child welfare. The organization has a credible market position with a history dating back to 1995 and receives support from the Czech Ministry of Labour and Social Affairs. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Contact Form 7, and Complianz GDPR for cookie consent management. It uses HTTPS with good SSL configuration and integrates Google Analytics for user tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some security best practices like security headers and a published privacy policy are missing. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR principles, but lacks explicit privacy and terms of service documents and security headers that could enhance protection against common web threats. No vulnerabilities or suspicious content were detected. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profits but reduces transparency. Overall, Budoucipestouni.cz presents a trustworthy and professional online presence for a non-profit organization focused on foster care support. Strategic improvements in privacy documentation and security headers would further strengthen its security posture and compliance.

S

SOS dětské vesničky

kdyzboliduse.cz

0

The website 'Když bolí duše, jednej rychle' is a mental health awareness campaign operated by SOS dětské vesničky, a recognized non-profit organization in the Czech Republic. It targets children, adolescents, and their families, providing support, crisis plans, and access to helpline contacts. The site is well-branded and professionally designed, reflecting a strong commitment to youth mental health. Technically, it leverages modern web technologies such as React and Next.js, with embedded multimedia content and integration of Google Analytics under a cookie consent framework. Security posture is solid with HTTPS and consent management, though explicit security headers and privacy policies are missing, which are recommended for compliance and trust. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profit campaigns. Overall, the site is trustworthy, safe, and professionally maintained, serving an important social cause.

P

Poradenské a krizové centrum, p. o.

pkcentrum.cz

0

Poradenské a krizové centrum, p. o. is a Czech non-profit organization founded in 2022, providing accessible help and support to individuals and families facing difficult life situations, including children at risk and victims of domestic violence. The organization operates primarily in the Zlín region and offers a range of social and psychological services such as crisis intervention, counseling, mediation, and substitute family care. The website reflects a professional and consistent brand image with strong regional partnerships and sponsors. Technically, the site is built on WordPress with modern web technologies, includes accessibility features, and enforces HTTPS with cookie consent mechanisms, indicating a good level of digital maturity. Security posture is adequate but could be improved by adding explicit security headers and incident response information. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

D

Diakonie ČCE

krabiceodbot.cz

0

Krabice od Bot is a prominent Czech non-profit initiative organized by Diakonie ČCE, focused on collecting and distributing Christmas gifts to children in need. The project enjoys strong market positioning as the largest charity gift collection in the Czech Republic, supported by reputable endorsements including the patronage of the president's wife. The website provides comprehensive information for donors, volunteers, and beneficiaries, facilitating engagement through clear navigation and calls to action. Technically, the site is built on Drupal 11 with integrations of modern JavaScript libraries and consent management tools, ensuring GDPR compliance and a good user experience across devices. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response information are absent, representing areas for improvement. Overall, the site is trustworthy and professionally maintained, though the absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy.

Artistic Collective Lúčnica is a prestigious Slovak folklore and dance ensemble based in Bratislava, with a rich history dating back to 1948. The organization offers cultural performances, including dance and chorus shows, and operates an e-shop and ticketing platform to support its activities. The website reflects a well-established cultural institution with a strong market position in Slovakia and internationally. Technically, the site is built on WordPress with modern libraries and plugins, offering good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and GDPR compliance, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the organization's cultural mission effectively.

A

Asian Family Services

asianfamilyservices.nz

0

Asian Family Services is a New Zealand-based non-profit organization dedicated to providing culturally tailored mental health, gambling harm minimisation, and wellbeing support services to Asian communities nationwide. Established in 2015, the organization operates multiple branches and offers multilingual support including English, Mandarin, Cantonese, Korean, Japanese, Thai, Vietnamese, and Hindi. The website reflects a professional and community-focused service provider with clear contact information, leadership visibility, and active social media presence. Technically, the website employs modern web technologies such as jQuery, Bootstrap, Google reCAPTCHA, and integrates multiple analytics and tracking pixels including Google Analytics, TikTok, and Facebook. Hosting and DNS are managed via reputable providers including Dreamscape Networks and Cloudflare, ensuring good performance and security. The site is mobile optimized and accessible with a clear navigation structure. Security posture is solid with HTTPS enforced and use of CAPTCHA on forms, though improvements are recommended in implementing security headers and publishing formal security policies. Privacy compliance is basic with a privacy policy and cookie consent banner present, but GDPR compliance is not explicitly indicated. WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website is trustworthy, well-maintained, and serves its target audience effectively. Strategic recommendations include enhancing security headers, formalizing security and incident response policies, and improving privacy compliance transparency.

S

SPAK-EKO, a.s.

spakeko.sk

0

SPAK-EKO, a.s. is a Slovak non-profit joint initiative formed by major tobacco companies to address environmental pollution caused by cigarette butts. The organization operates a voluntary system for cigarette waste collection and promotes environmental awareness and innovative reuse of tobacco product waste. The website is built on WordPress using the Divi theme, hosted likely by Websupport, and presents a professional and consistent brand image targeted at municipalities, clients, and the general public concerned with environmental issues. Technical infrastructure is modern but basic, with no advanced analytics or tracking detected. Security posture is good with HTTPS and DNSSEC enabled, though explicit security headers and policies are missing. Privacy and cookie policies are absent, indicating a compliance gap. Overall, the website is trustworthy and serves its informational and advocacy purpose effectively.

G

Grupo JAonline

grupojaonline.com.br

0

Grupo JAonline operates as a non-profit support group dedicated to helping compulsive gamblers in Brazil through virtual meetings and email support. The organization leverages Microsoft Teams for online meetings and promotes a 12-step recovery program. The website is well-structured, content-rich, and targets individuals and families affected by gambling addiction, particularly those without access to local support groups. Technically, the site is built on the Yola CMS platform, uses jQuery, Google Analytics, and other tracking tools, and is hosted on Brazilian infrastructure consistent with its audience. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks security headers and formal privacy or cookie policies, indicating room for compliance improvements. Overall, the site is trustworthy and serves a niche non-profit community effectively.

G

Gamblers Anonymous

gamblersanonymous.org

0

Gamblers Anonymous is a well-established non-profit organization focused on providing support and recovery resources for individuals affected by gambling addiction. The website offers multiple services including in-person, virtual, and telephone meetings, recovery programs, literature, and a monthly newsletter. The organization targets individuals struggling with gambling problems and their families, positioning itself as a trusted support network with a long history dating back to at least 1996 as indicated by the domain registration. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities and uses popular plugins such as Yoast SEO and WPBakery Page Builder. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The hosting provider is not explicitly identified but the domain registrar is Network Solutions, LLC. The site uses HTTPS with a good SSL configuration but lacks DNSSEC and some recommended security headers. From a security perspective, the site has a solid foundation with HTTPS and domain transfer protection but could improve by enabling DNSSEC and adding security headers like Content-Security-Policy. No explicit security policies or incident response contacts are found, which is typical for non-profit support organizations but could be enhanced for transparency. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected despite use of WooCommerce cookies. Overall, the website is trustworthy, professional, and safe for general audiences seeking help with gambling addiction. Strategic recommendations include improving DNS security, implementing security headers, and adding cookie consent to enhance privacy compliance and user trust.

F

Fundacja Polskiego Godła Promocyjnego Teraz Polska

terazpolska.pl

0

Fundacja Polskiego Godła Promocyjnego Teraz Polska is a well-established non-profit foundation founded in 1991, dedicated to promoting Polish business, products, services, and innovations through quality certification and promotional marks. The website serves as an informational and promotional platform targeting Polish businesses, municipalities, and consumers interested in Polish quality standards. The foundation holds a reputable market position as a recognized promoter of Polish business excellence. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, Cookiebot for cookie consent, and various social media tracking pixels, indicating a mature digital infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility improvements could be made. Security-wise, the website uses HTTPS with a good SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers and a published security policy or incident response contacts are absent, representing areas for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no indications of malicious activity or content safety concerns.

N

Nadační fond pro podporu zaměstnávání osob se zdravotním postižení

nfozp.cz

0

Nadační fond pro podporu zaměstnávání osob se zdravotním postižení (NFOZP) is a Czech non-profit foundation dedicated to supporting the employment of persons with disabilities. Established in 2007, it operates primarily within the government and non-profit sectors, providing support services, information dissemination, and managing grants to facilitate employment opportunities for disabled individuals. The website serves as an informational and outreach platform targeting employers, persons with disabilities, and related stakeholders in the Czech Republic. Technically, the website is built on WordPress using the Divi theme, with standard JavaScript and Google Fonts integrations. It is hosted by a Czech hosting provider with a stable domain registration dating back to 2007, indicating a mature and legitimate online presence. Security-wise, the website uses HTTPS but lacks visible security headers and formal security policies, which suggests room for improvement in security posture and compliance. Privacy and cookie policies are absent, indicating potential compliance gaps with GDPR and related regulations. Overall, the website is professionally designed with good accessibility features but would benefit from enhanced privacy, security, and contact transparency to improve trust and compliance.

S

Sjednocená organizace nevidomých a slabozrakých České republiky, zapsaný spolek

sons.cz

0

The website represents Sjednocená organizace nevidomých a slabozrakých České republiky, a large non-profit organization dedicated to supporting blind and visually impaired individuals across the Czech Republic. The organization provides a wide range of social services including counseling, training, guide dog programs, and barrier removal, positioning itself as a leading national entity in this sector. The website content is comprehensive, well-structured, and targets both members and the general public interested in their services. Technically, the site uses a modern JavaScript stack with jQuery, Bootstrap, and Masonry for layout, hosted by T-Mobile Czech Republic, and integrates Google Analytics for visitor tracking. Privacy compliance is addressed with GDPR-related pages and cookie consent mechanisms. Security posture is moderate with HTTPS usage and no exposed sensitive data, but lacks advanced security headers and vulnerability disclosure policies. The absence of WHOIS data reduces domain trustworthiness, but the website's content and external references support its legitimacy. Overall, the site is professional, accessible, and trustworthy with room for security and technical improvements.

C

CEREBRUM 2007

cerebrum2007.cz

0

CEREBRUM 2007 is a Czech non-profit patient organization dedicated to supporting individuals who have suffered brain injuries, including strokes, trauma, and tumors. The organization provides a community center, counseling services, educational workshops, and publishes informational materials to aid patients and their families. The website is well-structured, professionally designed, and targets patients, caregivers, healthcare professionals, and the general public interested in brain injury awareness. It maintains an active presence on multiple social media platforms and offers a newsletter for ongoing engagement. Technically, the website is built on WordPress with a modern plugin ecosystem including Yoast SEO, Contact Form 7, and Google services such as Analytics and reCAPTCHA. The site is mobile-optimized and uses HTTPS, ensuring secure communication. However, some security headers are missing, and there is no explicit cookie consent banner, which could be improved for better GDPR compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and spam protection on forms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable publicly, likely due to privacy protection, but the website content and business information appear consistent and legitimate. Overall, the site presents a trustworthy and professional digital presence for a small non-profit organization. Strategically, the organization should enhance its privacy compliance by implementing a cookie consent mechanism and consider publishing a security or incident response policy to further build trust. Regular updates and security header improvements will strengthen its security posture. The website effectively supports its mission and audience with clear navigation, relevant content, and community engagement tools.

F

fwd: Bundesvereinigung Veranstaltungswirtschaft e.V.

we-transform-future.live

0

The website www.we-transform-future.live represents the event platform 'wtf25' organized by 'fwd: Bundesvereinigung Veranstaltungswirtschaft e.V.', a non-profit association focused on the event industry in Germany. The platform offers a professional event experience with workshops, panels, and networking opportunities centered on future-oriented themes such as sustainability, business, politics, and people. The site targets event professionals, decision makers, and newcomers, providing relevant content and resources including event programs and partner information. Technically, the site is built on the Multiscreensite CMS platform, leveraging modern JavaScript libraries like jQuery and analytics tools such as Google Analytics and Snowplow. It uses HTTPS with good SSL configuration and includes privacy compliance features like cookie consent and GDPR-aligned privacy policies. However, explicit security headers and incident response information are absent, representing areas for improvement. Overall, the site is well-designed, accessible, and trustworthy, with a strong social media presence and clear business identity.

B

Bundeskonferenz Veranstaltungswirtschaft

bundeskonferenz.org

0

Bundeskonferenz Veranstaltungswirtschaft is a German non-profit organization representing the event industry. The website serves as a platform for advocacy, event information, and industry representation. It targets professionals and stakeholders within the German event sector, providing information about conferences, programs, and organizational goals. The organization positions itself as a strong voice for the event industry in Germany. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including Google Fonts and reCAPTCHA for form security. The site is mobile-optimized and uses HTTPS with HSTS enabled, indicating a good baseline security posture. However, there is a lack of explicit privacy and cookie policies, which impacts privacy compliance. Security-wise, the site benefits from HTTPS and HSTS but lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain ownership verification, but the website content and social media presence support legitimacy. Overall, the website is professional and trustworthy for its intended audience but would benefit from improved privacy compliance and enhanced security headers. Strategic recommendations include publishing privacy and cookie policies, adding security headers, and providing incident response contact information.

Ř

Římskokatolická farnost Klimkovice

farnostklimkovice.cz

0

The website www.farnostklimkovice.cz represents the Roman Catholic parish of Klimkovice, a small non-profit religious organization serving its local community. The site provides parish news, religious service schedules, historical information, and contact details. It targets local parishioners and visitors interested in the parish's activities and spiritual services. The business model is community and faith-based, with no commercial intent. Technically, the website is built on the Webnode CMS platform and uses Cloudfront CDN for content delivery. It incorporates Google Analytics with IP anonymization for visitor tracking. The site is mobile-optimized and has a moderate performance profile. However, it lacks advanced accessibility features and comprehensive SEO optimization. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers such as Content-Security-Policy and Strict-Transport-Security. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is weak due to the absence of privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the website is safe, professional, and trustworthy for its intended audience. The lack of WHOIS data suggests privacy protection, which is typical for small non-profits. Strategic improvements in privacy compliance and security headers would enhance the site's security posture and regulatory adherence.

F

Fair-ON-Pay Association

fair-on-pay.com

0

Fair-ON-Pay Association is a Swiss-based non-profit organization founded in 2022 that promotes equal pay in companies through certification and auditing services. It offers a recognized certification process with multiple levels, audited by SGS, to help companies demonstrate their commitment to equal pay and social responsibility. The association is a member of the Equal Pay International Coalition (EPIC), enhancing its credibility and international standing. The website is professionally designed using WordPress and the Divi theme, with good SEO and mobile optimization. It integrates Google Analytics and a GDPR-compliant cookie consent mechanism, reflecting a mature digital presence. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Overall, the website and business present a trustworthy and professional image with clear contact information and partner relationships.

Asociacija ,,Padedu augti“ is a Lithuanian non-profit organization dedicated to supporting families with premature and seriously ill newborns. Established in 2011, it provides various services including social support projects, educational initiatives, and direct assistance to hospitals and families. The organization maintains a strong community presence through storytelling, events, and partnerships with healthcare institutions. Their website reflects a well-structured, content-rich platform with clear navigation and engagement tools such as a live chat widget. Technically, the website employs modern web technologies including jQuery, jQuery UI, Fancybox, and Google Fonts, hosted behind Cloudflare DNS and nameservers ensuring reliable performance and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and formal security policies. From a security and compliance perspective, the site lacks visible privacy and cookie policies, which is a notable compliance gap especially under GDPR. No incident response or vulnerability disclosure information is provided. Contact information is clearly available, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

K

Kuratorium Deutsche Altershilfe Wilhelmine-Lübke-Stiftung e. V.

kda.de

0

Kuratorium Deutsche Altershilfe Wilhelmine-Lübke-Stiftung e. V. (KDA) is a well-established German non-profit organization founded in 1962, focused on promoting a humane society for aging and self-determined living. It operates under the patronage of the German Federal President and provides research, consultancy, project management, and advocacy services in the fields of aging, care, and social participation. The organization targets older adults, care professionals, public and private institutions, and policymakers primarily in Germany with European outreach. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence.

The Yes Men website represents a small, established activist collective founded in 2000, focusing on creative tactics and partnerships with other activist groups to further social campaigns. The organization provides educational resources, workshops, and media content such as movies and talks. The website is built on Drupal 9, indicating a modern CMS infrastructure, and integrates Google Analytics and Tag Manager with IP anonymization to track user engagement. While the site is professionally designed with good navigation and mobile optimization, it lacks explicit privacy, cookie, and terms of service policies, which are important for compliance and user trust. Security posture is moderate with HTTPS enabled but missing key security headers and incident response information. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the organization.

B

Baltic Human Rights Society

baltichumanrights.org

0

Baltic Human Rights Society (BHRS) is a non-profit organization dedicated to promoting human rights awareness and education in Latvia and the broader Baltic region. The organization focuses on fostering a culture of human rights through educational initiatives, advocacy, and collaborative projects with regional and international partners. The website reflects a well-structured platform aimed at human rights educators, activists, NGOs, and the general public interested in human rights issues. BHRS maintains partnerships with reputable European and Baltic institutions, enhancing its credibility and regional influence. Technically, the website employs standard web technologies including jQuery and SVG4Everybody for compatibility and user experience enhancements. It features a cookie consent mechanism compliant with GDPR principles, although no advanced security headers or analytics services are detected. The site is mobile-optimized with good navigation and content quality, though SEO and accessibility could be improved. The WHOIS data is unavailable or restricted, which limits domain trust verification but does not detract significantly from the site's legitimacy given the content and partner affiliations. From a security perspective, the site uses HTTPS (assumed from canonical URLs and modern standards) and implements cookie consent with opt-in, indicating privacy awareness. However, the absence of visible security headers and incident response contacts suggests room for improvement in security posture. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the site presents a moderate security maturity level appropriate for a non-profit educational organization. The overall risk assessment is low, with the primary concern being the lack of WHOIS transparency and limited security policy disclosures. Strategic recommendations include enhancing security headers, publishing explicit security and privacy policies, and providing clear contact information for incident response. These steps would improve trust and compliance, supporting BHRS's mission and stakeholder confidence.

C

Cilvēktiesību gids

cilvektiesibugids.lv

0

The website www.cilvektiesibugids.lv is a Latvian human rights guide providing educational content on various human rights topics and everyday situations. It targets the general public interested in human rights education and operates as a non-profit entity. The platform offers thematic articles, rights information, court practice summaries, and interactive tests in Latvian, Russian, and English. Technically, the site uses modern web technologies including self-hosted Matomo analytics for privacy-conscious tracking, Google Fonts, and cookie consent mechanisms. The design is professional, mobile-optimized, and accessible, with clear navigation and multilingual support. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. No vulnerabilities or suspicious content were detected. Overall, the site is trustworthy and serves as a valuable educational resource in the human rights domain.

M

MTÜ Eesti Lasterikaste Perede Liit

perekaart.ee

0

Perekaart is a well-established non-profit organization in Estonia providing a discount card service targeted at large families with three or more children. The website serves as a platform to promote the discount network, which includes over 600 partners offering more than 800 unique discounts across various sectors such as leisure, culture, and food services. The organization is positioned as a key player in supporting family welfare in Estonia, with a strong partnership ecosystem and a clear mission to add value to families' everyday lives. Technically, the website is built using modern web technologies including React and Material-UI, hosted behind Cloudflare DNS services, and integrates Google Tag Manager for analytics and SendSmaily for newsletter management. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. Privacy compliance is addressed through a cookie consent mechanism and a privacy policy page, reflecting awareness of GDPR requirements. From a security perspective, the website uses HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and detailed security or incident response policies on the site. No vulnerabilities or suspicious patterns were detected in the analysis. Overall, the security posture is adequate but could be improved with additional headers and documented policies. The overall risk assessment is low, with the website showing high trustworthiness and professionalism. Strategic recommendations include enhancing security headers, expanding privacy and incident response disclosures, and improving SEO and accessibility features to further strengthen the site's digital maturity and compliance posture.

D

Dom za žrtve nasilja u obitelji NOVI POČETAK

novipocetak.hr

0

Dom za žrtve nasilja u obitelji NOVI POČETAK is a Croatian social care institution dedicated to supporting victims of domestic violence and their children. Founded and operated under the auspices of the Krapinsko-zagorska županija regional government, it provides safe accommodation, psychosocial counseling, and professional social work services. The website reflects a well-structured, professionally designed platform with clear navigation and relevant content tailored to its target audience. Technically, the site is built on WordPress with Elementor and Yoast SEO, integrating Google Analytics and reCAPTCHA for security and analytics purposes. Security posture is strong with HTTPS enforced and appropriate security headers, though it lacks published security policies and cookie consent mechanisms. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site is trustworthy, compliant with GDPR in terms of privacy policy presence, but could improve cookie consent and incident response transparency.

R

Radnica.org

radnica.org

0

Radnica.org is a Croatian non-profit platform dedicated to supporting individuals facing workplace discrimination, particularly gender-based discrimination. The website offers educational content, guidance on rights, and an anonymous reporting form to help victims. It is affiliated with CESI, a recognized organization, enhancing its credibility. Technically, the site is built on Webflow with modern web fonts and scripts, delivering a good user experience with mobile optimization and clear navigation. Security-wise, the site uses HTTPS and Cloudflare Turnstile captcha for form protection, but lacks visible security headers and explicit incident response policies. Privacy compliance is well addressed with a cookie consent banner and a privacy policy page. Overall, the site is trustworthy and serves a niche audience effectively.

L

Libela

libela.org

0

Libela.org is a Croatian non-profit organization dedicated to promoting gender equality and social justice through media and advocacy. The website serves as a platform for publishing articles, reports, and news focused on gender facts and social issues relevant to Croatia. It targets a general audience interested in social activism and equality. The organization has been active since 2009, reflecting a mature and stable presence in its niche. Technically, the website is built on WordPress and leverages modern web technologies such as jQuery, Lightbox2, and Swiper for enhanced user experience. It is hosted on Linode, ensuring reliable infrastructure. The site demonstrates good mobile optimization, accessibility features, and SEO practices, supported by plugins like Yoast SEO and GDPR cookie compliance tools. From a security perspective, the site uses HTTPS with a valid SSL certificate and employs domain transfer protection. However, DNSSEC is not enabled, and additional security headers could be implemented to strengthen defenses. Privacy compliance is well addressed with clear privacy and cookie policies and explicit user consent mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, Libela.org presents a trustworthy, professional, and content-rich platform with a solid security posture and compliance framework. Strategic improvements in DNS security and HTTP headers would further enhance its security maturity and resilience.

C

CESI – Centar za edukaciju, savjetovanje i istraživanje

sezamweb.net

0

SeZaM is a Croatian non-profit educational website focused on sexual education for youth, operated under the auspices of CESI – Centar za edukaciju, savjetovanje i istraživanje. The platform provides comprehensive thematic content on sexuality, gender equality, reproductive health, and related social issues, targeting young people and educators. It includes interactive elements such as a virtual assistant and links to related educational services. The website is well-structured and professionally designed, with clear navigation and relevant content for its audience. Technically, the site uses modern web technologies including Google Fonts, FontAwesome, Turbolinks, and Google Analytics, and is hosted on Linode. The presence of CSRF tokens and HTTPS indicates a baseline security posture, although some security best practices such as DNSSEC and security headers are missing. The website is mobile-optimized and SEO-friendly but lacks explicit privacy and cookie policies, which are important for GDPR compliance. From a security perspective, the domain is mature and registered with a reputable registrar, with protections against unauthorized transfers. No WAF or blocking mechanisms are detected, and the site is fully accessible. However, the absence of privacy and cookie policies, security headers, and vulnerability disclosure mechanisms represent compliance and security gaps. Overall, the site is trustworthy but could improve its security and privacy posture. Strategically, the site serves an important educational role in Croatia, with a clear mission and target audience. It benefits from partnerships with CESI and related services, enhancing its credibility and reach.

G

Gradska knjižnica i čitaonica Ivana Belostenca

gkc-ivanabelostenca.hr

0

Gradska knjižnica i čitaonica Ivana Belostenca is a small, non-profit public library and cultural institution located in Ozalj, Croatia. It offers library services, cultural events, and access to significant historical works such as the Gazophylacium bilingual dictionary. The website serves as an informational portal for the local community and cultural enthusiasts. Technically, the site is built on Joomla CMS using common web technologies including jQuery, Bootstrap, and Google Maps API. The hosting is provided by ZoNet, a reputable Croatian hosting provider. The site is accessible, with clear navigation and consistent branding, but shows room for improvement in mobile optimization and accessibility. Security posture is moderate with HTTPS enabled but lacking important security headers and privacy compliance documentation. No forms or tracking scripts are present, minimizing privacy risks but also limiting interactivity. Overall, the website is trustworthy and professionally presented but would benefit from enhanced security and privacy measures.

The website www.peresobralik.ee represents the Estonian non-profit organization Eesti Lasterikaste Perede Liit, which focuses on promoting family-friendly dining establishments through a certification mark. The site targets families with children in Estonia and provides information about the certification, news updates, and regional member organizations. The business model is non-profit and community-oriented, aiming to enhance societal recognition and support for families with children. Technically, the website is built on WordPress and utilizes common web technologies such as jQuery, Owl Carousel, Font Awesome, and Google Fonts. The site is moderately performant, mobile-optimized, and has a clear navigation structure. However, it lacks advanced SEO and accessibility features. The hosting provider is not explicitly identified from the content. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is present. The site does not use analytics or tracking services, indicating minimal user tracking. Overall, the website is legitimate, safe, and professionally presented but has room for improvement in privacy compliance and security best practices. The WHOIS data aligns well with the website's claims, supporting its trustworthiness.

U

Udruga Biom

biom.hr

0

Udruga Biom is a Croatian non-profit organization dedicated to nature conservation and environmental education. The website serves as a platform to communicate their projects, publications, events, and opportunities for public involvement. It targets environmentalists, researchers, volunteers, and the general public interested in ecological issues. The organization operates primarily through donations, partnerships, and project funding, positioning itself as a reputable local NGO with active community engagement. Technically, the website is built on WordPress using modern technologies such as Tailwind CSS, Google Tag Manager, and reCAPTCHA for form security. The site is mobile-optimized with good SEO and accessibility basics, though some improvements could be made in accessibility and performance tuning. Analytics are implemented via Google Analytics, with moderate user tracking and GDPR-compliant privacy and cookie policies. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. Forms are protected with reCAPTCHA, and no obvious vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy or vulnerability disclosure page suggests room for maturity in security governance. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission. It presents low risk from a security and compliance standpoint but would benefit from enhanced transparency in security policies and incident response readiness.

C

CESI

cesi.hr

0

CESI is a Croatian non-profit organization dedicated to advancing the social position of women and achieving gender equality through education, consulting, research, and advocacy. The organization has a strong market presence with over 200 successful projects and numerous collaborations, targeting a broad audience interested in social justice and women's rights. Their website reflects a professional and consistent brand image with clear navigation and relevant content in Croatian and English. Technically, the site uses modern web standards, including HTTPS and JavaScript modules, and integrates Google Analytics for visitor insights. Accessibility and mobile optimization are well addressed, contributing to a positive user experience. Security-wise, the site enforces HTTPS and includes CSRF tokens but lacks some advanced security headers and formal security policies, indicating room for improvement. Privacy compliance is basic with cookie consent implemented, but explicit privacy and security policies could be enhanced. Overall, CESI's digital presence is credible and trustworthy, supporting their mission effectively.

K

Koalicija "Galiu gyventi"

galiugyventi.lt

0

Koalicija "Galiu gyventi" is a Lithuanian non-profit coalition dedicated to advocacy, education, and research related to addiction and associated social issues. The organization provides legislative monitoring, legal advocacy, networking, training, and publishes informational materials targeting policymakers, vulnerable groups, and professionals. The website is built on WordPress with modern technologies such as Bootstrap and Zion Builder, hosted by Hostinger. It features a professional design, clear navigation, and mobile optimization. Security posture is good with HTTPS enabled and no exposed sensitive data, though security headers and privacy compliance mechanisms are lacking. Contact information is clearly provided, and social media integration is present via Facebook SDK. Overall, the site is trustworthy and serves its non-profit mission effectively.

Europos namai is a Lithuanian non-profit organization dedicated to civic engagement, political monitoring, and educational projects. Their website, Eurohouse.lt, serves as a platform to share news, project updates, and partner information primarily targeting Lithuanian citizens interested in political and civic matters. The organization appears to have a stable market position within the non-profit sector in Lithuania, with ongoing projects and partnerships. Technically, the website is built on WordPress with a moderate technology stack including Bootstrap and various plugins for galleries and social icons. The site is hosted by a Lithuanian hosting provider, Hostex.lt, and uses HTTPS for secure communication. Security posture is moderate with anti-spam measures in place but lacks advanced security headers and explicit privacy or cookie policies. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences. WHOIS data confirms domain legitimacy and consistency with the organization's geographic focus. Overall, the website is functional and professional but could improve in privacy compliance and security best practices.

Lesoochranárske zoskupenie VLK operates the website 'Všetko pre NIČ' as a non-profit environmental advocacy platform focused on protecting natural forests in Slovakia. The organization promotes non-intervention in forest areas, organizes petitions, legal actions, and educational events to safeguard wildlife and natural reserves. The website serves as a communication and fundraising tool targeting environmentally conscious Slovak citizens and supporters. Technically, the site employs modern JavaScript libraries, Google Analytics, Facebook Pixel, and Google Tag Manager for tracking and user engagement. It integrates YouTube videos and Google Maps for enhanced content delivery. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and a published privacy policy or terms of service, which are areas for improvement. Overall, the website is well-designed, user-friendly, and trustworthy, with moderate tracking practices and a clear call to action for donations.

Duha is a Czech non-profit organization dedicated to providing leisure, nature, and recreational activities for children and youth. The organization operates through local branches across the country, offering camps, outdoor sports, cultural activities, and volunteer opportunities. Their focus on experiential pedagogy and community engagement positions them as a well-established entity in the youth non-profit sector. The website content is rich with event reports, news, and information about their programs, targeting children, youth, and volunteers. Technically, the website uses standard web technologies such as Bootstrap and jQuery, with a moderate level of mobile optimization and accessibility. However, there is no evidence of advanced CMS or hosting details. The site lacks privacy and cookie policies, and no security headers or HTTPS status information was detected from the provided data, indicating room for improvement in security and compliance. From a security perspective, the absence of WHOIS data reduces transparency, though this is likely due to privacy protection common among non-profits. No forms or sensitive data collection mechanisms were found, reducing immediate risk. The site does not display any signs of WAF or blocking mechanisms, and content is fully accessible. Social media presence and partner logos add to the trustworthiness of the organization. Overall, the website is functional and informative but requires enhancements in security posture, privacy compliance, and transparency to improve trust and protect user data. Strategic improvements in these areas will strengthen the organization's digital maturity and stakeholder confidence.

The Yes Men website represents a small, long-established activist collective focused on partnering with other activist groups to employ creative tactics for social campaigns. The organization has a niche market position within the non-profit activism sector, offering services such as workshops, trainings, collaborations, and media productions including movies. The website is built on Drupal 9 CMS and integrates Google Analytics and Google Tag Manager with IP anonymization, reflecting a moderate level of digital maturity. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content for its audience. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies, which are important for compliance and trust. The domain registration is consistent and long-standing, supporting the legitimacy of the organization. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Jogadores Anônimos is a Brazilian non-profit organization dedicated to supporting individuals struggling with compulsive gambling. The website serves as a hub for information, recovery literature, and access to support groups both online and in-person. It provides contact details including regional offices, WhatsApp helplines, and educational resources. The organization positions itself as a self-sustained community without affiliations to political or religious entities. Technically, the website is built on WordPress with modern plugins like Elementor and Yoast SEO, hosted on HostGator Brazil. The site is mobile-optimized and SEO-friendly but lacks published privacy and cookie policies, which are critical for compliance. Security posture is adequate with HTTPS and no visible vulnerabilities, though security headers and incident response information are missing. Overall, the site is trustworthy, professional, and safe for general audiences seeking help with gambling addiction.

P

Problem Gambling Foundation of New Zealand

pgf.nz

0

The Problem Gambling Foundation of New Zealand operates a professional, well-structured website providing free, confidential counselling and support services for individuals and families affected by gambling harm. The organization holds a strong market position as a national non-profit entity with subsidiaries focused on cultural support. The website demonstrates a mature digital infrastructure utilizing modern web technologies, including JavaScript modules, HTMX, and integrated chat support via Zoho SalesIQ. Analytics and marketing tools such as Google Tag Manager and Facebook Pixel are employed with evident privacy compliance. Security posture is robust with HTTPS enforcement and CAPTCHA protections, though some security headers could be improved. Overall, the site is trustworthy, accessible, and user-friendly, targeting a broad audience in New Zealand seeking gambling harm support.

I

iDonate

idonate.ie

0

iDonate.ie is an Irish charity fundraising platform that enables charities and non-profit organizations to raise funds online. Positioned as Ireland's largest fundraising platform, it offers services focused on donation processing and campaign hosting for charitable causes. The website is built on a modern WordPress infrastructure using Elementor for page building and Yoast SEO for search engine optimization, indicating a mature digital presence. The platform integrates multiple analytics and marketing tools such as TikTok Pixel, Microsoft Clarity, and LinkedIn Insight Tag, supported by a cookie consent mechanism via Cookiebot to address privacy compliance. Security posture is generally good with HTTPS enforced, though explicit security headers are not clearly detected. The absence of WHOIS data limits domain trust verification, and no explicit privacy policy or contact information was found in the provided content. Overall, the site presents a professional and trustworthy front for its charitable fundraising mission.

Ž

Ženský byznys, z.s.

zensky-byznys.cz

0

Ženský byznys, z.s. is a Czech non-profit organization dedicated to empowering women by providing mentoring, workshops, and professional development programs. The organization positions itself as a leader in fostering female leadership and entrepreneurship in the Czech Republic, with partnerships including Visa and ČSOB. Their website reflects a professional and consistent brand image, targeting women professionals, entrepreneurs, and those seeking career advancement. Technically, the website is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and accessibility considerations. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is trustworthy, compliant with GDPR, and provides valuable content and community engagement for its audience.

S

Spelberoendes Riksförbund

spelberoende.se

0

Spelberoendes Riksförbund is a Swedish non-profit organization dedicated to supporting individuals affected by gambling addiction and their families. With over 20 years of experience, the organization offers self-help meetings, individual counseling, group sessions, and educational resources both online and through local chapters across Sweden. Their mission focuses on prevention, support, and advocacy in the gambling addiction space. The website reflects a mature digital presence built on WordPress with modern plugins and compliance tools, including GDPR cookie consent mechanisms and live chat support. Social media integration and clear contact information enhance user engagement and trust. Security posture is adequate with HTTPS and basic protections, though improvements such as DNSSEC and enhanced security headers are recommended. Overall, the site is professional, trustworthy, and well-aligned with its non-profit mission.

V

VšĮ „OSFL PROJEKTAI“

osfl.lt

0

OSFL Projektai is a Lithuanian non-profit organization focused on delivering community programs, projects, and professional services such as accounting, consulting, and administrative support. The organization maintains a clear presence in Lithuania with a physical office in Vilnius and actively engages with partners and stakeholders through various projects and initiatives. Their website reflects a professional and consistent brand image targeted at non-profit entities and civic groups within Lithuania. Technically, the website is built on WordPress, leveraging common JavaScript libraries like jQuery and Slick Carousel, providing a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and secure form inputs; however, the absence of security headers and privacy policies indicates room for improvement. The lack of WHOIS data transparency slightly reduces trustworthiness, but the visible business information and contact details support credibility. Overall, the website is a reliable digital presence for a small non-profit organization with a focus on community engagement and service provision.

Atviros Lietuvos fondas is a Lithuanian non-profit organization dedicated to strengthening civil society, supporting NGOs, and promoting democracy and human rights. With nearly 30 years of history, it holds a reputable position in Lithuania's civic sector. The website is built on WordPress using the Avada theme and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and MailerLite. It employs a cookie consent mechanism compliant with GDPR, reflecting a good privacy posture. Security practices include HTTPS and cookie consent, though additional security headers could enhance protection. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a mature digital presence aligned with its mission and audience.

S

Smajlíček NSK, z.ú.

smajlicek.cz

0

Smajlíček NSK, z.ú. is a Czech non-profit organization established in 2024 by the Nadace Simony Kijonkové foundation. It operates free leisure centers aimed at children and youth, particularly those from socially excluded backgrounds, providing a safe and supportive environment for skill development and healthy growth. The organization is in its early stages with its first center located in Mělník. The website reflects a professional and clear presentation of its mission and services, targeting families and communities in the Czech Republic. Technically, the site is built using Framer, integrates Google Analytics and Microsoft Clarity for user insights, and employs Google Tag Manager for marketing management. The site is mobile-optimized and SEO-friendly but lacks some advanced accessibility features and security headers. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements are recommended in security headers and published policies. The absence of WHOIS data limits domain trust assessment, but the association with a known foundation and clear contact information supports legitimacy. Overall, the site is trustworthy, well-designed, and serves its non-profit mission effectively.

Œ

Œuvre Nationale de Secours Grande-Duchesse Charlotte

oeuvre.lu

0

Œuvre Nationale de Secours Grande-Duchesse Charlotte is a well-established Luxembourg non-profit organization dedicated to supporting associations in social, cultural, environmental, sport & health, and heritage projects. Funded primarily by the Luxembourg National Lottery, it has a long history dating back to 1944 and holds a reputable position in the local community. The website reflects a professional and accessible digital presence, leveraging Drupal 10 and modern web technologies, with strong emphasis on accessibility and user experience. Security posture is good with HTTPS and secure embedding practices, though explicit security headers could be improved. The lack of WHOIS data limits domain trust analysis but does not detract from the organization's evident legitimacy. Overall, the site is safe, well-designed, and compliant with privacy regulations.

The website teribear.cz represents Nadace Terezy Maxové dětem, a Czech non-profit foundation focused on children's welfare. The site currently displays a temporary placeholder message indicating maintenance or downtime, with minimal content. The foundation appears to have been established in 2008, consistent with the domain registration date. The website uses WordPress with the Divi theme and includes Google Analytics for visitor tracking. However, it lacks critical compliance documents such as privacy and cookie policies, as well as contact information, which reduces its overall trust and compliance posture. Technically, the website is built on a modern CMS platform with a popular theme and uses HTTPS, ensuring encrypted communications. The site loads moderate resources and is mobile optimized. However, it lacks security headers and formal privacy compliance mechanisms. No forms or data collection fields are present on the homepage, limiting exposure to input-based vulnerabilities. From a security perspective, the site shows no signs of active WAF or blocking mechanisms and no visible vulnerabilities in the HTML content. The absence of security headers and compliance policies are notable gaps. The WHOIS data is consistent and indicates a legitimate, long-standing domain registration with no privacy protection, aligning with the non-profit nature of the organization. Overall, the website is functional but minimal, with room for improvement in privacy compliance, security hardening, and contact transparency. Strategic enhancements in these areas would improve trustworthiness and regulatory adherence.

B

Bundesstiftung Livekultur

bundesstiftung-livekultur.org

0

The Bundesstiftung Livekultur website represents a German non-profit cultural foundation dedicated to preserving and promoting live music culture, including pop, club, and festival scenes. The foundation focuses on securing cultural spaces and developing funding concepts to sustain live culture as a valued part of Germany's cultural landscape. The website content is professionally presented in German, targeting cultural actors, event organizers, and the general public interested in live music culture. The foundation appears to have been established around 2021, consistent with the website's content and publication dates. Technically, the website is built on WordPress 6.8.3 with common plugins such as Yoast SEO and jQuery. The site is accessible, mobile-optimized, and includes structured data for SEO enhancement. However, some technical improvements are recommended, including the implementation of security headers and a cookie consent mechanism to enhance privacy compliance. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and explicit security policies or incident response contacts. The WHOIS data is unavailable or malformed, likely due to privacy protection, which is common for non-profit organizations. No suspicious indicators or vulnerabilities were found in the content or technical setup. Overall, the site demonstrates a solid security posture but could improve transparency and compliance with privacy regulations. The overall risk assessment is low, with the site appearing legitimate and professionally maintained. Strategic recommendations include adding cookie consent, security headers, clear contact information for security incidents, and publishing terms of service and security policies to enhance trust and compliance.