Security Directory

B

Bílý kruh bezpečí, z. s.

116006.cz

0

The website www.116006.cz represents a Czech Republic based non-profit social service operated by Bílý kruh bezpečí, z. s., providing a free, 24/7 telephone helpline (116 006) for victims of crime and domestic violence. The service is officially registered under Czech social service law and offers expert, anonymous, and free crisis intervention. The website content is well-structured, professionally designed, and targeted at victims seeking help, with clear navigation and relevant information. Technically, the site is built on WordPress using the Foundation CSS framework and includes standard tracking via Google Analytics and Tag Manager. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks some security headers and a published privacy policy. WHOIS data is missing, which limits domain registration transparency but does not detract from the apparent legitimacy of the service. Overall, the website is a credible, well-maintained resource for victim support in the Czech Republic.

C

Centrum pro rodinu Zlín z. s.

cpr-zlin.cz

0

Centrum pro rodinu Zlín z. s. is a Czech non-profit organization established in 2008, dedicated to supporting families, parents, children, and seniors through counseling, material assistance, and community programs. The website reflects a well-structured and community-focused entity with clear contact information and active event management. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and several UI libraries, hosted behind Cloudflare DNS with HTTPS enabled, indicating a reasonable level of digital maturity. Security posture is adequate with HTTPS and no visible sensitive data exposure, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies, which should be addressed to meet GDPR requirements. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in privacy and security transparency.

C

Centrum pro rodinu a sociální péči Hodonín

cprhodonin.cz

0

Centrum pro rodinu a sociální péči Hodonín is a small non-profit organization based in the Czech Republic, providing social services, child care groups, mediation, therapy, and counseling primarily to the local community of Hodonín. The website is built on WordPress using the Divi theme, indicating a moderate level of digital maturity with standard web technologies and integration of Facebook Pixel for marketing and analytics. The site implements a cookie consent mechanism, demonstrating some awareness of privacy compliance, although no explicit privacy policy or terms of service are published, representing a compliance gap. Security posture is moderate with HTTPS usage implied but lacking visible security headers and incident response information. Overall, the website is professional and functional but would benefit from enhanced privacy and security documentation to improve trust and compliance.

C

Centrum pro rodinu Vysočina, z. s.

centrumrodin.cz

0

Centrum pro rodinu Vysočina, z. s. is a Czech non-profit organization dedicated to supporting families through various programs such as residential stays, marriage preparation, counseling, and events targeting parents, couples, and families in the Vysočina region. The website is built on Joomla! CMS and employs common web technologies including jQuery, Bootstrap, and tracking tools like Google Analytics and Facebook SDK. It presents a professional and consistent brand image with clear contact information and testimonials, indicating a trustworthy and community-focused organization. Security posture is moderate with HTTPS enforced and CSRF tokens in forms, but lacks advanced security headers and explicit privacy or cookie policies. The website is accessible without WAF or blocking mechanisms and contains no adult or questionable content, making it safe for general audiences. Overall, the site scores well on business credibility and content quality but should improve privacy compliance and security best practices to enhance trust and regulatory adherence.

S

Salesiánský klub mládeže, z. s. Zlín

skmzlin.cz

0

Salesiánský klub mládeže, z. s. Zlín is a Czech non-profit organization focused on youth development and social prevention services. The website serves as an information hub for their activities including youth clubs, summer camps, educational programs, and volunteer opportunities. The organization targets young people and families in the Zlín region, positioning itself as a community-centric youth support entity. The website is professionally designed with consistent branding and clear navigation, supporting its role as a trusted local institution. Technically, the site uses a modern stack including jQuery, Bootstrap, and Matomo analytics, hosted with Cloudflare DNS and registered via WEDOS. While performance and mobile optimization are good, there is room for improvement in accessibility and SEO. Security posture is adequate with HTTPS enabled but lacks important security headers and privacy compliance elements such as cookie consent and privacy policies. Overall, the domain registration data aligns well with the organization's profile, supporting legitimacy and trustworthiness.

S

Salesiánský klub mládeže z. s. Rumburk – Jiříkov

salesianirumburk.cz

0

Salesiáni Rumburk operates as a non-profit religious and community organization serving the local Czech community, focusing on youth and parish activities. The website provides information about the Salesian youth club and associated Roman Catholic parishes in the Rumburk region. The organization maintains partnerships with recognized religious entities such as Salesians of Don Bosco and Loreta Rumburk. Technically, the website is built on WordPress using the Divi theme and includes GDPR-compliant cookie consent mechanisms. The site is accessible, mobile-optimized, and uses modern web technologies, though some improvements in security headers and contact transparency are advisable. Security posture is moderate with HTTPS enforced and no visible vulnerabilities, but the absence of WHOIS data limits domain legitimacy verification. Overall, the site is trustworthy and serves its community purpose effectively.

S

Salesiánský klub mládeže, z. s. Centrum Don Bosco

dozivota.cz

0

Salesiánský klub mládeže, z. s. Centrum Don Bosco is a Czech non-profit organization dedicated to supporting young people who have had to leave their families or are at risk. Their services include social rehabilitation accompaniment, life preparation courses, and providing safe spaces for youth. The organization has a strong local presence with partnerships including government bodies and foundations, and a history dating back to 1995. Technically, the website is built on Drupal CMS with modern front-end technologies and includes GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and well-structured, serving its target audience effectively.

S

Salesiánská asociace Dona Boska

sadba.org

0

Salesiánská asociace Dona Boska (SADBA) is a Czech non-profit organization dedicated to supporting disadvantaged children and youth worldwide through volunteer missions and educational initiatives. The organization focuses on training and sending volunteers abroad, supporting salesian missions, and fostering development cooperation. Their website reflects a professional and well-structured digital presence, targeting volunteers, donors, and supporters primarily in the Czech Republic. The site offers detailed project descriptions, news updates, and partner affiliations, reinforcing its credibility in the non-profit sector. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution. It employs Google Analytics and Google Tag Manager for tracking and analytics, and includes a cookie consent mechanism compliant with EU regulations. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be improved. Security-wise, HTTPS is enforced, and reCAPTCHA is used for form protection; however, additional security headers are recommended to enhance protection. The security posture is solid but could benefit from implementing more comprehensive HTTP security headers and regular plugin updates to mitigate vulnerabilities. The absence of a visible privacy policy and terms of service pages is a compliance gap that should be addressed to meet GDPR and other privacy regulations fully. WHOIS data is unavailable due to a malformed response, which slightly reduces trustworthiness, but the website content and partner endorsements support legitimacy. Overall, SADBA presents a trustworthy and professional online presence suitable for its non-profit mission. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and conducting periodic security audits to maintain a robust security posture.

L

LEX z.s.

gunlex.cz

0

LEX z.s. is a Czech non-profit organization dedicated to protecting the rights of firearms owners. The website serves as an information hub providing legislative updates, articles, training information, and advocacy activities related to firearms ownership in the Czech Republic. The organization has a long-standing presence since 2002, reflected in the domain age and consistent WHOIS data. The site targets firearms owners, sport shooters, and those interested in firearms legislation, offering multilingual support and active content updates. Technically, the website is built on Joomla CMS with common JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. While the site is functional and professionally designed with good navigation and content relevance, it lacks explicit privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure information. Overall, the site is trustworthy and serves its community well but would benefit from enhanced privacy compliance and security best practices.

Č

Česká kuželkářská a bowlingová federace

ckbf.cz

0

Česká kuželkářská a bowlingová federace (ČKBF) is the national governing body for ninepin and tenpin bowling sports in the Czech Republic. It operates as a non-profit sports federation overseeing its two organizational units, the Czech Ninepin Bowling Association (ČKA) and the Czech Bowling Association (ČBA). The federation manages sport governance, competition organization, membership, talent development, and represents the Czech Republic in international bowling organizations such as IBF, WNBA, and ETBF. The website provides comprehensive information about the federation's activities, partners, official documents, and contact details, targeting amateur and professional players, clubs, and sports enthusiasts within the Czech Republic.

L

Linka bezpečí, z.s.

linkabezpeci.cz

0

Linka bezpečí is a well-established Czech non-profit organization providing free and anonymous counseling services primarily for children and students up to 26 years old. The website serves as a comprehensive platform offering telephone helpline, online chat, email support, educational resources, and multimedia content focused on mental health and social issues. The organization has a strong market position as a trusted helpline with a long history since 1994 and a domain registered since 1998. Technically, the website is built on the Liferay CMS platform, utilizing modern web technologies and third-party analytics and marketing tools, ensuring good performance, accessibility, and SEO. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and active social media presence.

S

Salesiánské středisko mládeže – dům dětí a mládeže Brno-Líšeň

salesko.cz

0

Salesko is a Czech non-profit organization dedicated to supporting children and youth primarily from Brno-Líšeň and surrounding areas. The organization offers a variety of youth-oriented activities including sports, music, creative workshops, camps, and cultural events. Their mission focuses on physical, mental, and spiritual development of young people. The website reflects a well-structured community hub with event announcements, registration forms, and news updates, positioning Salesko as a trusted local youth center. Technically, the website is built on WordPress with modern front-end frameworks like Bootstrap and jQuery, supplemented by plugins for forms, calendars, and push notifications. The site is mobile-optimized and uses HTTPS with Google reCAPTCHA to secure forms. Cookie consent is implemented, indicating awareness of privacy compliance, though no dedicated privacy policy page was found. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and form protection but lacks published security policies or incident response contacts. The absence of WHOIS data limits domain trust verification, though the website content and social media presence support its legitimacy. No vulnerabilities or exposed sensitive data were detected. Overall, Salesko presents a credible, community-focused non-profit with a solid digital presence. Enhancements in privacy documentation and security transparency would further strengthen trust and compliance.

S

Salesiánské kluby mládeže, z. s.

skm.cz

0

Salesiánské kluby mládeže (SKM) is a Czech non-profit organization dedicated to youth development through clubs, educational programs, and community activities inspired by the pedagogical principles of Don Bosco. The organization operates multiple regional clubs across the Czech Republic, offering courses for animators, summer camps, and various youth engagement activities. The website reflects a well-structured and content-rich platform supporting their mission with clear contact information and published strategic documents. Technically, the website is built on WordPress with Bootstrap and jQuery, employing modern SEO practices and responsive design. It uses Smart Slider 3 for interactive content and integrates Google Analytics for visitor tracking. The site is served over HTTPS, ensuring encrypted communication, but lacks some advanced security headers and a formal privacy policy page. From a security perspective, the site demonstrates basic good practices such as HTTPS and cookie consent but could improve by implementing additional security headers and providing a vulnerability disclosure mechanism. The absence of WHOIS data reduces domain trustworthiness, though the presence of official registration numbers and consistent branding supports legitimacy. Overall, SKM's website is a credible and professional platform for a medium-sized non-profit organization focused on youth education and community engagement. Strategic improvements in security and privacy documentation would enhance trust and compliance.

R

Rodinný svaz ČR, z.s.

tydenprorodinu.cz

0

Týden pro rodinu is a well-established non-profit initiative organized by Rodinný svaz ČR, z.s., focused on promoting family values and community engagement through annual events across the Czech Republic. The website reflects a mature digital presence with a clear focus on family-oriented content and partnerships with regional governments and organizations. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates Google Maps and social media SDKs to enhance user experience. Security posture is adequate with HTTPS and cookie consent implemented, though improvements in security headers and privacy policy transparency are recommended. The absence of WHOIS data limits domain trust verification, but the overall content and partner ecosystem support legitimacy. Strategic recommendations include enhancing security headers, publishing a privacy policy, and establishing a vulnerability disclosure channel to strengthen compliance and trust.

Z

Zdravotní klaun

zdravotniklaun.cz

0

Zdravotní klaun is a Czech non-profit organization dedicated to bringing joy and laughter to children in hospitals and geriatric patients in senior homes since 2001. The website reflects a mature digital presence with a professional design and consistent branding. It leverages TYPO3 CMS and integrates multiple modern frontend libraries and accessibility tools to enhance user experience. The organization uses comprehensive cookie consent mechanisms and integrates major analytics and marketing platforms such as Google Analytics, Facebook Pixel, and Microsoft telemetry to monitor and optimize its outreach and engagement. However, the absence of WHOIS data and explicit privacy policy pages introduces some concerns regarding domain legitimacy and full privacy compliance. Overall, the website demonstrates a good security posture with HTTPS enforcement and standard security practices, but could improve by adding more security headers and explicit privacy documentation.

F

Fédération Équestre Internationale

fei.org

0

Fédération Équestre Internationale (FEI) is the international governing body for equestrian sport, dedicated to promoting and regulating the sport globally with a focus on athlete welfare and ethical partnership with horses. The organization operates as a large non-profit entity with a strong global presence, supported by reputable partners such as Longines and others. The website is professionally designed, content-rich, and targets equestrian athletes, fans, and stakeholders worldwide. Technically, the site is built on Drupal 7 with modern web technologies and integrates multiple analytics and marketing tools while maintaining good privacy compliance and cookie consent mechanisms. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though explicit security headers could be improved. Overall, the domain and website present a trustworthy and professional image consistent with an established international sports federation.

O

Oceana

oceana.org

0

Oceana is a well-established non-profit organization dedicated to ocean conservation and advocacy, operating since 1995. It holds a strong market position as the largest international advocacy group focused solely on protecting the world's oceans. The website reflects a professional and consistent brand image, targeting a broad audience including environmental advocates and policymakers. The business model centers on advocacy, public education, and policy influence to drive ocean protection efforts. Technically, the website is built on WordPress with modern JavaScript libraries and integrates multiple analytics and tracking tools such as Google Tag Manager, Microsoft Clarity, and Facebook Pixel. Hosting and DNS services leverage Cloudflare, enhancing performance and security. The site is mobile-optimized with good SEO practices and basic accessibility features. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, DNSSEC is not enabled, and some advanced security headers are missing. No public security policy or incident response information is available, and no vulnerability disclosure program is evident. Overall, the security posture is solid but could be improved with additional headers and DNS security. The overall risk assessment is low, with no critical vulnerabilities or suspicious indicators detected. Strategic recommendations include enabling DNSSEC, implementing a Content-Security-Policy header, and publishing security and incident response policies to enhance transparency and trust.

The Awesome Foundation is a well-established global non-profit organization founded in 2009, dedicated to providing $1,000 micro-grants to creative and innovative projects worldwide through autonomous chapters. The website reflects a professional and consistent brand with a clear mission and a broad international presence. Technically, the site uses modern web technologies including Turbo Rails, StimulusJS, and is hosted on a Cloudfront CDN, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enforced, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data due to privacy protection is typical for non-profits and does not detract from the site's legitimacy. Overall, the site is trustworthy and serves its community effectively, though enhancing privacy compliance and security transparency would strengthen its position.

Awesome Without Borders is a small non-profit organization focused on providing weekly $1,000 no-strings-attached grants to support creative, social impact, and community projects. The website is built on WordPress using popular plugins such as Elementor and Yoast SEO, indicating a moderate level of digital maturity. The site is well-branded and content-rich, targeting individuals and groups seeking funding for innovative ideas. Technically, the site uses HTTPS and Google Analytics for tracking, but lacks some advanced security features such as DNSSEC and security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the website presents a trustworthy and professional image but could improve in security and privacy compliance areas.

P

Podporné služby OLÚP, n. o. Predná Hora

spoluprevas.sk

0

Podporné služby OLÚP, n. o. Predná Hora is a Slovak non-profit organization providing supportive psychiatric services, accommodation, and experiential activities under the brand #spOLUPrelepšíživot. The website targets individuals seeking community and therapeutic support, offering services such as teambuilding, exhibitions, and a vitae center. The organization positions itself as a regional niche provider with a focus on quality and community engagement. Technically, the website is built on WordPress using modern plugins like Elementor and Yoast SEO, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. WHOIS data shows inconsistencies with a future domain creation date, which lowers trust but does not negate the legitimacy of the business. Overall, the website is professional and functional but would benefit from enhanced security and compliance measures.

P

Podporné služby OLÚP, n.o. Predná Hora

spoluprelepsizivot.sk

0

The website spoluprelepsizivot.sk is a Slovak non-profit platform dedicated to providing free support and counseling services for individuals affected by gambling addiction. Operated by Podporné služby OLÚP, n.o. Predná Hora, it offers a helpline available daily from 9:00 to 01:00. The site targets individuals and families impacted by gambling problems, positioning itself as a niche support service within Slovakia. The business model is non-profit, focusing on social support rather than commercial gain. Technically, the website is built on WordPress using the Elementor page builder and Yoast SEO plugin, hosted likely by Websupport based on DNS information. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features. SEO is adequately addressed with proper meta tags and structured data. However, Google Analytics is present but not configured, indicating incomplete analytics implementation. From a security perspective, the site benefits from HTTPS and DNSSEC, ensuring secure communications and DNS integrity. However, it lacks important security headers such as Content-Security-Policy and X-Frame-Options, which could improve protection against common web attacks. No incident response or vulnerability disclosure information is provided, and privacy and cookie policies are absent, representing compliance gaps. No forms or email contacts are present, limiting data collection risks but also reducing user engagement options. Overall, the website is trustworthy and professionally presented, with clear contact phone information and partner affiliations. The absence of privacy and cookie policies and security headers are notable weaknesses. Strategic improvements in compliance documentation, security headers, and analytics configuration would enhance the site's security posture and user trust.

E

Emmaüs International

emmaus-international.org

0

Emmaüs International is a large, established non-profit organization focused on fighting poverty and social exclusion with a presence in over 40 countries and approximately 450 groups. The website serves as a comprehensive platform for information about their history, actions, campaigns, and resources, targeting a general audience interested in humanitarian aid and social justice. The organization maintains a consistent brand image and active social media presence, enhancing trust and engagement. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses privacy-respecting analytics tools like Matomo. The site is mobile-optimized, accessible, and SEO-friendly, with a cookie consent mechanism compliant with GDPR. However, the hosting provider is not explicitly identified, and performance is moderate. From a security perspective, the site enforces HTTPS and uses cookie consent management but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The malformed WHOIS data limits domain registration trust verification, though the website content and social signals support legitimacy. Overall, the site presents a professional and trustworthy front for Emmaüs International but would benefit from enhanced transparency in security policies and domain registration details to improve trustworthiness and compliance.

G

GiveSmart

givesmart.com

0

GiveSmart is a nonprofit-focused fundraising software platform offering a comprehensive suite of tools including mobile bidding, silent auctions, virtual and hybrid fundraising, donor management, and nonprofit accounting. Positioned as a trusted partner with over 5,000 brands and $5.3+ billion raised, GiveSmart operates under the parent company Momentive Software. The website demonstrates a mature digital presence with professional design, clear navigation, and extensive content tailored to nonprofit organizations. Technically, the site leverages WordPress CMS with modern frameworks and integrates multiple marketing and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. WHOIS data is unavailable, which slightly impacts trust but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to strengthen trust and compliance.

The website presbariery.cz represents a Czech non-profit organization, Pražská organizace vozíčkářů, dedicated to promoting accessibility and barrier-free environments. The organization provides services such as accessibility mapping, consulting, educational seminars, and publishes related materials. Their target audience includes students, architects, designers, and people with disabilities, primarily within the Czech Republic. The website is well-branded and supported by governmental and municipal entities, indicating a strong local presence and trust. Technically, the website is built on Joomla CMS with a combination of jQuery, Mootools, and Bootstrap frameworks. It uses Google Analytics for visitor tracking and is hosted on Czech infrastructure consistent with the domain registration. The site shows moderate performance and basic mobile optimization. However, some JavaScript libraries are outdated, and no advanced security headers are detected. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, but lacks explicit security policies, incident response contacts, and cookie consent mechanisms, which are important for GDPR compliance. No critical vulnerabilities or exposed sensitive data were found, but improvements in security headers and privacy compliance are recommended. Overall, the website is credible and professionally maintained but would benefit from enhanced privacy and security practices to improve compliance and user trust.

D

DLA Grand-Est

dla-grandest.org

0

DLA Grand-Est is a regional non-profit organization dedicated to supporting social utility structures in the Grand Est region of France. The website presents a professional and well-structured platform offering information about their services, including accompaniment for social utility employers, training for volunteers, and calls for service providers. The organization positions itself as a key regional player in social and employment development within the non-profit sector. Technically, the website employs modern web technologies such as Bootstrap for responsive design, jQuery for interactivity, FontAwesome for icons, and Google Analytics for visitor tracking. The site is mobile-optimized and includes standard SEO and accessibility features, though some accessibility aspects could be improved. The presence of a cookie consent banner and a comprehensive privacy policy indicates good privacy compliance. From a security perspective, the site uses HTTPS with a presumably strong SSL configuration. However, no explicit security headers were detected, and there is no visible security policy or incident response contact information. The WHOIS data is unavailable due to a malformed request or privacy restrictions, which slightly reduces trust in domain legitimacy but does not outweigh the professional presentation and compliance indicators. Overall, the website is a credible and professional platform for a regional non-profit organization with a good security posture and privacy compliance. The main risk is the lack of WHOIS transparency and absence of explicit security policies, which should be addressed to enhance trust and security maturity.

E

ESSor Grand Est

essor-grandest.org

0

ESSor Grand Est operates as a regional information portal dedicated to supporting the Social and Solidarity Economy (ESS) in the Grand Est region of France. The platform provides a comprehensive database of accompaniment and financing tools for project leaders, associations, cooperatives, and social enterprises. It also features calls for projects and crowdfunding information, positioning itself as a key resource for ESS actors in the region. The website maintains a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the website employs legacy JavaScript libraries such as jQuery 1.8.3 and integrates Google Analytics and Google Tag Manager for user tracking. While the site loads most resources securely, some external scripts are loaded over HTTP, introducing mixed content risks. The site demonstrates basic mobile optimization and accessibility but lacks advanced SEO and modern frameworks. No CMS or hosting provider details are evident from the source. From a security perspective, the site uses HTTPS for analytics scripts but does not explicitly show security headers or advanced security policies. The use of outdated JavaScript libraries and insecure script loading are notable vulnerabilities. Privacy compliance is minimal, with no cookie consent mechanism detected and only a basic privacy/legal mentions page available. WHOIS data is unavailable, limiting domain trust verification. Overall, the security posture is moderate but requires improvements to meet best practices and regulatory compliance. The overall risk assessment indicates a functional and trustworthy platform for its niche audience but with moderate technical and security shortcomings. Strategic recommendations include updating legacy libraries, enforcing HTTPS for all resources, implementing cookie consent, enhancing security headers, and improving WHOIS transparency to strengthen trust and compliance.

The website 'Acheter Responsable GE' is a regional platform dedicated to promoting goods and services from the Social and Solidarity Economy in the Grand Est region of France. It serves as a directory, resource hub, and event organizer for businesses and organizations interested in responsible purchasing. The platform is supported by regional public entities and managed by the Chambre Régionale de l'Economie Sociale et Solidaire Grand Est, indicating a strong regional presence and trustworthiness. Technically, the site uses a Flexit CMS, integrates Google Analytics and Tag Manager for tracking, and is served over HTTPS, ensuring secure communication. However, the absence of visible privacy and cookie policies and lack of security headers suggest areas for improvement in privacy compliance and security posture. The WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency, but the professional content and public entity support mitigate some of these concerns. Overall, the site presents a good user experience with clear navigation and relevant content for its target audience.

B

Bílý kruh bezpečí, z.s

infovictims.cz

0

The website www.infovictims.cz serves as an informational and support platform primarily targeting victims of crime in the Czech Republic. It is associated with the non-profit organization Bílý kruh bezpečí, z.s, which focuses on providing legal rights information, support, and guidance related to criminal proceedings. The site is professionally designed with a clear focus on its niche audience, offering relevant content and resources for victims seeking assistance. From a technical perspective, the website employs standard web technologies including HTML5, CSS3, Google Fonts, and common JavaScript libraries such as Fancybox and Slick Carousel. The site appears to be moderately optimized for performance and mobile responsiveness, though accessibility features are basic. There is no evidence of a CMS or advanced frameworks, suggesting a custom or lightweight implementation. Security posture is moderate but could be improved. The site uses HTTPS (implied by base URL), but no security headers were detected in the provided data. There are no visible privacy or cookie policies, nor incident response contacts or data protection officer information, indicating gaps in compliance and security transparency. The WHOIS data is missing, which raises concerns about domain legitimacy and trustworthiness despite the site's professional appearance and association with a known non-profit. Overall, the website is a useful resource for its target audience but would benefit from enhanced security practices, transparent privacy policies, and verified domain registration information to improve trust and compliance.

B

Bílý kruh bezpečí, z. s.

linka-pomoci.cz

0

The website www.116006.cz represents a Czech Republic-based non-profit social service operated by Bílý kruh bezpečí, z. s., providing free, 24/7 telephone crisis support to victims of crime and domestic violence. The site is professionally designed, mobile-optimized, and offers clear navigation to key service areas such as domestic violence, stalking, and victims' rights. The technical infrastructure is based on WordPress with Foundation CSS and includes Google Analytics for visitor tracking. Security posture is solid with HTTPS enabled and cookie consent implemented, though security headers and explicit privacy policies are lacking. WHOIS data is missing, which raises some concerns about domain registration transparency but does not detract from the apparent legitimacy of the organization. Overall, the site is trustworthy, safe, and well-positioned to serve its target audience effectively.

B

Bílý kruh bezpečí, z.s.

domacinasili.cz

0

The website www.domacinasili.cz serves as an informational and support platform dedicated to victims of domestic violence in the Czech Republic. It is operated by the non-profit organization Bílý kruh bezpečí, z.s., which provides crisis telephone help, psychological support, legal and social counseling, and public awareness resources. The site is well-branded and targets individuals affected by or concerned about domestic violence, offering practical advice and contact information for assistance. Technically, the website is built on WordPress and uses modern web technologies including jQuery and Google Analytics for tracking. It employs HTTPS for secure communications and includes a cookie consent banner to comply with basic privacy regulations. The site is mobile-optimized and presents a clear navigation structure, although some accessibility features could be improved. From a security perspective, the site benefits from HTTPS but lacks visible security headers and a published privacy policy page, which are important for compliance and user trust. No WHOIS data was retrievable, which limits domain registration trust analysis. No forms collecting personal data were found on the homepage, reducing immediate data protection concerns. Overall, the security posture is moderate but could be enhanced with additional best practices. The overall risk assessment indicates a trustworthy and professional non-profit website with some gaps in privacy compliance and domain transparency. Strategic recommendations include publishing a comprehensive privacy policy, implementing security headers, providing incident response contacts, and verifying domain registration details to improve trust and compliance.

T

The Harnisch Foundation

thehf.org

0

The Harnisch Foundation is a well-established private philanthropic organization focused on creative and progressive social impact initiatives since 1998. Their website reflects a niche foundation with a clear mission to support leadership and community projects such as Funny Girls and Awesome Without Borders. The foundation maintains a professional online presence with consistent branding, clear contact information, and active social media channels. Technically, the site is built on WordPress with modern plugins and integrates analytics and tracking tools for marketing insights. Security posture is adequate with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is basic with policies present but lacking advanced GDPR indicators. Overall, the site is trustworthy and serves its audience effectively.

S

Sailors for the Sea

sailorsforthesea.org

0

Sailors for the Sea is a well-established non-profit organization founded in 2004, dedicated to ocean conservation through community engagement, education, and advocacy. Powered by Oceana, it offers programs such as Clean Regattas, environmental lesson plans for kids, and campaigns addressing plastic pollution and species protection. The website is built on WordPress with modern plugins and technologies, demonstrating a moderate level of digital maturity. Security posture is adequate with HTTPS and Cloudflare DNS, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

A

AFM-Téléthon

telethon.fr

0

AFM-Téléthon is a prominent French non-profit organization dedicated to funding research and supporting patients affected by neuromuscular and rare diseases. The website serves as a secure platform for online donations, offering multiple payment options and clear information about the impact of donations. The organization maintains a strong market position in the charitable sector with transparent financial reporting and recognized certifications such as Bureau Veritas. Technically, the website is built on a modern stack with Drupal CMS, integrates advanced analytics and consent management tools, and is optimized for mobile and accessibility. Security practices include TLS 1.2 encryption and consent frameworks, though explicit security headers should be verified. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR regulations.

I

iRights.Lab

irights-lab.de

0

iRights.Lab is a German non-profit organization dedicated to promoting digital rights, digital literacy, and digital ethics. The organization provides educational resources, workshops, and advocacy initiatives aimed at civil society, educators, and public administration. Their digital presence includes projects like the Enter-Award and the iRights.Lab Academy, positioning them as a recognized entity in the digital rights and education sector in Germany. The website is professionally designed, mobile-optimized, and offers content primarily in German with English support.

F

Fost Plus

fostplus.be

0

Fost Plus is a Belgian non-profit organization dedicated to promoting sustainable packaging management through sorting, recycling, reuse, and reduction initiatives. It serves a broad audience including households, businesses, schools, healthcare, horeca, and event sectors, positioning itself as a key player in Belgium's circular packaging economy. The website is professionally designed, multilingual, and rich in relevant content, reflecting a mature digital presence. Technically, the website is built on Drupal CMS with modern frameworks like Bootstrap and integrates advanced marketing and analytics tools such as HubSpot, Google Tag Manager, and Usercentrics for consent management. The site is mobile-optimized, accessible, and SEO-friendly, indicating a well-maintained technical infrastructure. From a security perspective, the site enforces HTTPS and implements consent mechanisms, though it lacks explicit security headers in the provided data. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is restricted due to .be domain policies, but the overall domain legitimacy is supported by consistent business information and professional web presence. Overall, Fost Plus demonstrates a strong security posture, good privacy compliance, and high business credibility, making it a trustworthy and authoritative source in its domain.

N

Nadační fond Rozum a Cit

rozumacit.org

0

Nadační fond Rozum a Cit is a well-established Czech non-profit foundation dedicated to supporting foster families and children with psychological and social challenges. With over 27 years of experience, it provides key services such as funding psychotherapies, organizing support meetings, and managing donations through trusted platforms. The website reflects a professional and consistent brand image with clear contact information and GDPR compliance indications. Technically, the site is built on Joomla CMS with modern libraries and frameworks, offering good mobile optimization and moderate performance. Security posture is solid with HTTPS and CSRF protections, though improvements in security headers and cookie consent are recommended. WHOIS data is unavailable due to privacy protection, which is typical for non-profits and does not detract from the site's legitimacy. Overall, the site is trustworthy, user-friendly, and serves its target audience effectively.

N

National Breast Cancer Foundation, Inc.

nbcf.org

0

National Breast Cancer Foundation, Inc. is a well-established non-profit organization dedicated to providing help and hope to those affected by breast cancer through early detection, education, and support services. The organization has a strong market position supported by recognized certifications such as Four Star Charity and Platinum Transparency awards. Their website reflects a professional and trustworthy presence with comprehensive content targeting individuals affected by breast cancer and supporters. Technically, the website is built on WordPress with modern technologies and optimized for performance, mobile, and SEO. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although formal security policies and incident response information are not publicly available. Overall, the website demonstrates high credibility and trustworthiness, with a moderate risk due to lack of WHOIS transparency but justified by privacy protection for a non-profit entity.

N

Nadace NEXT

nadacenext.cz

0

Nadace NEXT is a Czech non-profit foundation established in 2022, continuing the charitable activities of NEXT REALITY GROUP. The foundation focuses on helping individuals in need and operates primarily within the Czech Republic. The website is professionally designed using WordPress with Elementor and Astra theme, providing a good user experience and clear navigation. It includes GDPR-compliant privacy and cookie policies with a consent mechanism, reflecting a mature approach to privacy. The technical infrastructure is modern and includes spam protection and Google Tag Manager for analytics. Security posture is good with HTTPS and security headers in place, though explicit security policies and incident response contacts are absent. Overall, the website is trustworthy and well-aligned with its business purpose.

G

Galaxy Digital LLC

galaxydigital.com

0

Galaxy Digital LLC operates the website galaxydigital.com, offering a comprehensive volunteer management software solution called Get Connected. The company targets non-profit organizations and mission-driven groups primarily in the United States and Canada. Their software facilitates volunteer recruitment, engagement, scheduling, tracking, and reporting, positioning them as a leading provider in the volunteer management SaaS market. The website is professionally designed, well-structured, and rich in content, reflecting a mature digital presence. Technically, the site is built on the HubSpot CMS platform, leveraging modern marketing and analytics tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Hotjar. The site employs HTTPS with strong security headers, ensuring secure communications and good security posture. Forms are integrated via HubSpot, providing secure data collection mechanisms. The website is mobile-optimized and accessible, with good SEO practices. Security-wise, the site demonstrates solid fundamentals with HTTPS enforcement and security headers. However, it lacks publicly available security policies, incident response plans, and vulnerability disclosure information, which are recommended for enhanced trust and compliance. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the website content and business information appear legitimate and professional. Overall, the website presents a low-risk profile with strong business credibility and technical implementation. Strategic recommendations include publishing explicit security and incident response policies, clarifying domain registration details, and enhancing privacy transparency to further strengthen trust and compliance.

N

NBCF Shop

nbcfshop.com

0

NBCF Shop is an e-commerce platform dedicated to selling merchandise that supports the National Breast Cancer Foundation's mission of breast cancer awareness, education, and support. The website offers a variety of products including apparel, accessories, HOPE Kits, and educational materials. It targets a general audience interested in supporting breast cancer causes through purchases. The business operates on Shopify, leveraging a mature e-commerce infrastructure with integrations for marketing and customer reviews. The domain is well-established since 2013, consistent with the organization's history and mission. Technically, the site uses modern web technologies and is mobile-optimized, though some improvements in privacy policy transparency and DNS security could be made. Security posture is solid with HTTPS and domain locking, but lacks DNSSEC and explicit security headers. Overall, the site is professional, trustworthy, and serves a niche non-profit retail market effectively.

R

HOME | #RecreateResponsibly

recreateresponsibly.org

0

The website www.recreateresponsibly.org is a community-focused platform dedicated to promoting inclusive, safe, and sustainable outdoor recreation. It positions itself as a non-profit entity encouraging responsible behavior in nature. The site is built on the Wix platform, leveraging Wix Thunderbolt and associated JavaScript libraries, indicating a moderate level of technical maturity suitable for small to medium-sized organizations. The content is well-structured with clear messaging but lacks comprehensive privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is basic with no evident security headers or advanced protections, and WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

U

Union Nationale Habitat Jeunes

unhaj.org

0

Union Nationale Habitat Jeunes is a French non-profit organization dedicated to facilitating housing mobility for young people aged 16 to 30. The organization provides a range of housing options, social services, and community engagement opportunities to support youth in their personal and professional development. The website positions the organization as a national leader in youth housing with a strong social mission. Technically, the website is built on WordPress using modern frameworks such as Materialize CSS and incorporates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and SEO-friendly, with good content quality and clear navigation. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and policies could enhance protection. The WHOIS data is incomplete, limiting domain legitimacy verification, but the website content and social media presence support its credibility. Overall, the site is professional, trustworthy, and serves its target audience effectively.

U

UFISC

ufisc.org

0

UFISC is a French non-profit organization dedicated to supporting cultural structures and promoting social economy within the arts and culture sector. The website serves as an information hub offering news, webinars, and resources primarily targeting cultural professionals and associations. The organization has an established presence since 2007, reflected in the domain age and consistent content updates. Technically, the site is built on Joomla CMS with standard web technologies including jQuery and Select2, and integrates Google Analytics and Twitter widgets for analytics and social engagement. Security posture is moderate with HTTPS enabled and domain protections in place, but lacks DNSSEC and security headers, and does not publicly disclose privacy or cookie policies, which are compliance gaps. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, content-rich, and safe for general audiences.

M

MRJC

mrjc.org

0

MRJC is a French non-profit youth and popular education association focused on rural areas. It engages approximately 3000 young people who organize projects and activities to transform society. The organization offers services such as BAFA/D training, youth stays, volunteering, and rural development initiatives. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Materialize CSS, and analytics tools like Matomo and Google Analytics. Security posture is good with HTTPS, security headers, and cookie consent mechanisms in place, although some improvements like a full CSP and security.txt are recommended. The domain WHOIS data is privacy protected, which is typical for non-profits, and no suspicious patterns were detected. Overall, the website presents a trustworthy and credible digital presence for MRJC.

Klastr sociálních inovací a podniků – SINEC z.s. is a non-profit cluster organization based in the Moravskoslezský region of the Czech Republic. It focuses on supporting social enterprises and social innovation, aiming to foster growth in the social economy and increase employment opportunities for socially and health-disadvantaged groups. The website serves as a hub for information about the cluster, its members, projects, and annual reports, targeting social economy actors primarily within the region but also across the Czech Republic. Technically, the website is built on WordPress using the Blocksy theme and Elementor page builder with JetEngine plugin. It employs modern web technologies such as jQuery and Slick Carousel for UI components. The site is mobile optimized and has moderate performance, but lacks advanced SEO and accessibility features. No analytics or tracking services are detected, indicating a privacy-conscious approach or minimal user tracking. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers and published security policies. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Incident response and vulnerability disclosure mechanisms are not present. Overall, the website is professional and trustworthy for its intended audience but would benefit from enhanced privacy compliance, security hardening, and transparency measures to improve its security posture and regulatory adherence.

C

Chráněné dílny Charity Opava

kramekprotebe.cz

0

Chráněné dílny Charity Opava operates an e-commerce platform selling handcrafted ceramic and sewn products made by employees of protected workshops affiliated with Charity Opava. The website targets general consumers interested in unique, socially responsible products and offers additional services such as gift set customization and baptism-related items. The business model focuses on retail sales supporting a charitable cause, positioning itself in a niche market within the Czech Republic. Technically, the site is built on the Shoptet e-commerce platform, utilizing common web technologies like jQuery, Google Analytics, and Facebook SDK, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced and CSRF protections on forms, though the absence of explicit security headers is noted. Privacy compliance is strong, with clear GDPR-aligned policies and cookie consent mechanisms. However, the lack of WHOIS data for the domain reduces trustworthiness from a domain registration perspective. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in security headers and domain transparency.

FOKUS – Opava, z.s. is a Czech non-profit organization established in 2007, dedicated to providing social services primarily for persons with mental illness and disabilities in the Moravian-Silesian region. The organization operates multiple service centers offering social rehabilitation, protected workshops, clinical psychology outpatient services, and community-based support. It is funded through regional and municipal grants, as well as partnerships with local government and social institutions. The website reflects a stable regional presence with detailed project updates and transparent funding acknowledgments. Technically, the website is built on legacy JavaScript libraries such as Prototype.js and Scriptaculous, with a custom HTML structure and no detected CMS. The site is moderately optimized for performance and accessibility but lacks modern features such as cookie consent mechanisms and advanced SEO optimizations. No analytics or tracking scripts are present, indicating a privacy-conscious approach. From a security perspective, the site lacks visible security headers and cookie policies, and there is no evidence of HTTPS enforcement or advanced security frameworks. However, no critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms a long-standing domain registration consistent with the organization's history, supporting legitimacy. Overall, the website is trustworthy and professionally maintained for its non-profit purpose but would benefit from modern security enhancements, privacy compliance improvements, and technical modernization to improve user experience and security posture.

E

Elim Opava, o.p.s.

elimopava.cz

0

Elim Opava, o.p.s. is a well-established non-profit organization based in the Czech Republic, focused on providing social and community services such as low-threshold youth services, family assistance, volunteer coordination, foster family support, and community work. The organization has a strong local presence with a history dating back to 1998 and a dedicated facility since 2002. Their website reflects a professional and consistent brand image with clear navigation and relevant content targeted at children, youth, families, and local community members. Technically, the website is built on WordPress with common plugins and jQuery, offering good mobile responsiveness and moderate performance. While HTTPS is properly implemented, the site lacks some security headers and formal privacy and cookie policies, which are important for compliance and user trust. No forms are present on the homepage, and contact is provided via email and phone, supplemented by social media presence on Facebook. From a security perspective, the site shows a good baseline with no visible vulnerabilities or exposed sensitive data. However, improvements are recommended in implementing security headers, publishing privacy and cookie policies, and establishing incident response and vulnerability disclosure mechanisms. The domain WHOIS data is consistent with the organization's claims, showing a long-standing registration that supports legitimacy. Overall, Elim Opava's website is a trustworthy and professional platform for their non-profit activities, with room for enhancement in privacy compliance and security best practices to further strengthen user trust and regulatory adherence.

C

Charita Opava

charitaopava.cz

0

Charita Opava is a well-established non-profit Catholic organization based in the Czech Republic, providing a broad range of social and health care services including protected housing, social rehabilitation, day care, therapeutic workshops, and senior care. The organization targets residents of the Opava region, donors, volunteers, and partners, positioning itself as a trusted regional social service provider with multiple governmental and community partnerships. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website uses a custom CMS named HandMade, with standard web technologies including HTML5, CSS3, and JavaScript. It integrates multiple Google Analytics and Tag Manager scripts for user tracking and analytics, and implements a cookie consent mechanism compliant with GDPR. The site is mobile optimized with moderate performance and basic accessibility features. From a security perspective, the website enforces HTTPS and uses cookie consent to manage user privacy preferences. However, it lacks explicit security headers and a vulnerability disclosure policy, which are recommended for improved security posture. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the organization's identity. Overall, Charita Opava's website demonstrates a solid digital presence with good privacy compliance and business credibility. Strategic improvements in security headers, accessibility, and explicit security policies would further enhance trust and resilience.