Security Directory

T

twingle - einfach Spenden

twingle.de

0

twingle is a German-based online fundraising platform specializing in donation widgets and fundraising project management tools tailored for non-profit organizations. The company has established a reputable market position, evidenced by its iF Design Award 2021 and ISO 27001 certified hosting environment. Their services include a variety of donation tools such as occasion-based donations, gift certificates, and mobile/contactless payment options, supported by APIs for CRM integration. The platform is designed for ease of use, mobile responsiveness, and broad payment method support, targeting NGOs and fundraising professionals. Technically, twingle operates on a WordPress CMS with popular plugins like Yoast SEO and Slider Revolution, hosted on INWX-managed servers. The website demonstrates good SEO and mobile optimization, though performance is moderate. Security practices include SSL encryption, ISO 27001 certified data centers, and use of Google reCAPTCHA, but could be improved by adding security headers and explicit privacy and cookie policies. The security posture is solid with no detected vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies and incident response contacts indicates room for compliance improvement. The website content is professional, trustworthy, and safe for general audiences, with no adult or questionable content detected. Overall, twingle presents a credible and well-structured fundraising solution with a good balance of technical maturity and business credibility. Strategic enhancements in privacy compliance and security headers would further strengthen its market trust and regulatory adherence.

K

Kunst- und Kulturverein Rheinsberg e.V.

kunstverein-rheinsberg.de

0

The Kunst- und Kulturverein Rheinsberg e.V. is a well-established non-profit cultural association dedicated to preserving and promoting the cultural heritage of Rheinsberg, Germany. The organization operates through membership, cultural events, and support of local arts and heritage projects. Their website reflects a professional and community-focused approach, targeting local residents, culture enthusiasts, and families. Technically, the site is built on modern web technologies including Next.js and React, with a responsive design and integration of a GDPR-compliant cookie consent mechanism via Usercentrics. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site demonstrates good business credibility and technical maturity.

M

Musikkultur Rheinsberg gGmbH

musikkultur-rheinsberg.de

0

Musikkultur Rheinsberg gGmbH is a well-established cultural non-profit organization based in Germany, offering a broad range of music and cultural events, including concerts, operas, festivals, and educational courses. It operates through three main divisions: the Musikakademie Rheinsberg, the Kammeroper Schloss Rheinsberg, and the Schlosstheater Rheinsberg, serving both professional and amateur musicians as well as cultural audiences. The organization holds a strong market position as a cultural beacon in northern Brandenburg, with a clear focus on music and performing arts. The website is built on a modern WordPress platform utilizing popular plugins such as Yoast SEO, Borlabs Cookie for privacy compliance, and various JavaScript libraries for enhanced user experience. The site demonstrates good technical maturity with responsive design, SEO optimization, and moderate performance. Analytics are handled via Matomo, indicating a preference for privacy-conscious tracking. From a security perspective, the site enforces HTTPS and uses privacy and cookie management plugins, but lacks explicit published security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, supporting the legitimacy of the domain and organization. Overall, the website is professional, trustworthy, and serves its cultural mission effectively. However, improvements in privacy documentation, security transparency, and accessibility could enhance compliance and user trust.

K

Kreuzberger Lebensbrücke gGmbH

kreuzberger-lebensbruecke.de

0

The website www.wald-bruecke.de represents Kreuzberger Lebensbrücke gGmbH, a German non-profit organization focused on social integration by providing employment and training opportunities for youth, disabled, and disadvantaged individuals. The business model relies on sales of office and hygiene products, as well as specialized blind products, to fund its social projects. The site is well-structured, professionally designed, and targets a German-speaking audience interested in social welfare and integration services. Technically, the site runs on WordPress with standard plugins like Yoast SEO and CookieYes for cookie consent management. Hosting is provided by Cloudpit, as indicated by the nameservers. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security headers and incident response contact details. The site contains some suspicious hidden content related to online casinos, which may be SEO spam or misplaced text, slightly impacting trust. Overall, the site is functional, compliant with GDPR, and trustworthy for its intended audience.

Digitalcourage is a well-established German non-profit organization founded in 1987, dedicated to promoting digital rights, privacy, and democracy in the digital age. The organization operates with a strong community focus, relying on donations and volunteer work, and is known for organizing the annual BigBrotherAwards since 2000. Their website reflects a professional and privacy-respecting approach, with no tracking or cookie consent mechanisms, emphasizing transparency and user respect. Technically, the website is built on Drupal 11, using modern web technologies and is hosted via Schlundtech. It demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. The WHOIS data aligns well with the organization's history and legitimacy. Overall, Digitalcourage's website is a trustworthy, content-rich platform serving activists and the general public interested in digital rights. It maintains high standards of privacy and security, with clear calls to action for membership, donations, and participation. The site integrates several related services and partner domains, enhancing its ecosystem and outreach.

G

Gesellschaft für Freiheitsrechte e.V.

freiheitsrechte.org

0

Gesellschaft für Freiheitsrechte e.V. (GFF) is a German non-profit organization dedicated to defending fundamental and human rights through legal means. Established in 2015, it has built a reputable position in the human rights advocacy sector, focusing on strategic litigation, public education, and policy influence. The website reflects a professional and consistent brand image, targeting activists, legal professionals, and supporters of civil liberties. Technically, the site employs modern web technologies with good mobile optimization and accessibility, though some security enhancements like DNSSEC and security headers could be improved. The security posture is solid with HTTPS and domain transfer protections, but lacks explicit incident response or security policy disclosures. Overall, the site is trustworthy, transparent, and well-aligned with its mission.

A

Antifaschistisches Bildungszentrum und Archiv Göttingen e.V.

antifaschistisches-archiv.org

0

The Antifaschistisches Bildungszentrum und Archiv Göttingen e.V. is a small non-profit organization based in Germany focused on antifascist education, archiving, and activism. The website serves as a platform for educational content, event announcements, archival access, and publications related to right-wing extremism and antifascist efforts. It targets researchers, activists, and the general public interested in these topics. The organization maintains a consistent brand presence and provides encrypted contact forms to enhance privacy and security. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including Matomo for analytics and several plugins for GDPR compliance and media management. Hosting is provided by InterNetX GmbH, and the site uses HTTPS with good SSL configuration. The site is moderately performant, mobile-optimized, and has good SEO and accessibility basics. From a security perspective, the site employs HTTPS, encrypted contact forms, and a cookie consent mechanism, but lacks explicit security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and serves its non-profit educational mission effectively. Strategic recommendations include enhancing security headers, publishing a security.txt file, and expanding incident response documentation to further improve security posture and trust.

H

Helvetas

helvetasusa.org

0

Helvetas USA is an independent non-profit development organization affiliated with a global network headquartered in Switzerland, operating in 29 countries. The organization focuses on humanitarian aid, emergency response, water, agriculture, climate, democracy, peace, and vocational training among other development sectors. The website reflects a professional and consistent brand presence with good content quality and relevant information for its target audience of general public and stakeholders interested in international development. Technically, the website employs modern frontend technologies including Bootstrap 4 and Google Tag Manager for analytics and tracking. It implements cookie consent mechanisms via OneTrust, indicating awareness of privacy compliance requirements. The site is mobile optimized and SEO friendly, though accessibility features are basic. Hosting and CMS details are not explicitly identified. Security posture is moderate with HTTPS implied and cookie consent in place, but lacks visible security headers, explicit security policies, or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. WHOIS data is unavailable due to privacy protection or query failure, which is common for organizations seeking privacy but reduces transparency. Overall, the website is trustworthy and professional but would benefit from publishing explicit privacy policies, terms of service, contact information, and security disclosures to enhance compliance and user trust.

C

Con i Bambini

percorsiconibambini.it

0

Percorsi con i bambini is a non-profit network platform managed by Con i Bambini, focused on coordinating and sharing projects aimed at combating educational poverty among minors in Italy. The website serves as a collaborative space for project leaders and partners to publish updates, articles, and event information. It is affiliated with Fondazione CON IL SUD, indicating a strong institutional backing. The platform targets organizations involved in social and educational initiatives, providing a niche but important service in the non-profit sector. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and the Yoast SEO plugin, ensuring good SEO and mobile responsiveness. It uses Matomo for analytics, emphasizing privacy. The site is well-structured with comprehensive metadata and structured data for SEO. However, the domain is currently expired, posing a risk to availability. Security headers are not explicitly detected, and there is no visible security policy or incident response information, which are areas for improvement. From a security perspective, the site uses HTTPS and DNSSEC, which are positive indicators. The lack of explicit security headers and vulnerability disclosure mechanisms suggests moderate security maturity. Privacy compliance is good, with clear privacy and cookie policies and a consent mechanism. Contact information is clearly provided, enhancing trust. Overall, the website is professional, trustworthy, and serves a clear social mission. The main risk is operational due to domain expiration and some missing security best practices. Addressing these will improve resilience and trustworthiness.

I

Internationaler Bund

internationaler-bund.de

0

Internationaler Bund is a large, well-established German non-profit organization focused on social work, education, and integration services across Germany. With approximately 14,000 employees, it supports children, youth, and adults through a wide range of programs including youth social work, refugee assistance, vocational training, and international cooperation. The website reflects a mature digital presence with comprehensive content tailored to its target audience of social workers, educational institutions, and beneficiaries. Technically, the site is built on TYPO3 CMS, hosted on German Telekom infrastructure, and employs Matomo analytics with a robust cookie consent mechanism, demonstrating good digital maturity and privacy compliance. Security posture is solid with HTTPS enforcement and standard security headers, though the absence of a dedicated security policy or incident response page suggests room for improvement. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting the organization's credibility and mission.

W

WeCanHelp gGmbH

bildungsspender.de

0

Bildungsspender.de is a well-established German charity shopping platform operated by WeCanHelp gGmbH. It enables users to support thousands of charitable institutions by shopping at a large network of partner shops without additional cost. The platform also offers a fee-free Mastercard and direct donation options, positioning itself as a leading charity e-commerce facilitator in Germany. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in German. Technically, it uses a modern stack including Bootstrap 4, jQuery, and FontAwesome, hosted on kasserver.com. Security posture is adequate with HTTPS enabled and obfuscated contact emails, but lacks explicit security headers and a cookie consent mechanism. WHOIS data is consistent and trustworthy, supporting the legitimacy of the domain and business. Overall, the site demonstrates good business credibility and technical maturity with room for security and privacy improvements.

F

Fondation L’Oréal

fondationloreal.com

0

Fondation L’Oréal is a reputable non-profit organization dedicated to empowering women, particularly in the fields of science and inclusive beauty. It operates internationally with strong partnerships, notably with UNESCO and its parent company L’Oréal. The foundation offers programs supporting women scientists, vocational beauty training, and social integration initiatives. The website reflects a mature digital presence built on Drupal 10, integrating modern analytics and consent management tools. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for such organizations. Overall, the site is professional, content-rich, and trustworthy with a high level of user experience and compliance.

O

openPetition gGmbH

openpetition.org

0

openPetition gGmbH operates a politically neutral, non-profit online platform enabling citizens to start and support petitions globally. With over 15 million users, it facilitates grassroots democracy and political participation through digital signature campaigns. The platform is multilingual and serves a broad international audience, focusing on transparency and citizen empowerment. Technically, the website uses modern web standards, including HTTPS and Matomo analytics, ensuring privacy-conscious user tracking. However, the absence of WHOIS data and some security headers slightly reduce trustworthiness. The site demonstrates strong content quality, professional design, and good accessibility, positioning it as a reputable non-profit entity in the civic tech space.

C

Con i Bambini

conibambini.org

0

Con i Bambini is a reputable Italian non-profit foundation dedicated to combating educational poverty among minors. The organization supports social projects through funding, monitoring, and impact evaluation, targeting non-profit entities and social sector stakeholders. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, it is built on WordPress with modern frameworks and privacy-conscious analytics (Matomo). Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms, though it lacks a dedicated security policy or incident response page. WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of organization. Overall, the website demonstrates high trustworthiness and compliance with privacy regulations.

T

TOTAL E-QUALITY Deutschland e.V.

total-e-quality.de

0

TOTAL E-QUALITY Deutschland e.V. is a German non-profit organization dedicated to promoting equal opportunities across genders in business, science, and government sectors. The organization offers an award recognizing commitment to equal opportunity policies and provides membership and informational services to interested parties. The website is professionally designed, multilingual, and includes clear navigation and relevant content targeted at organizations and individuals interested in gender equality advocacy. Technically, the website is built on Django CMS with modern frontend technologies including jQuery, Bootstrap, and FontAwesome. It employs Matomo analytics for user tracking, reflecting a privacy-conscious approach. The site is mobile-optimized and accessible, with good SEO practices. However, some security best practices such as security headers and cookie consent mechanisms are missing. From a security perspective, the site uses HTTPS with excellent SSL configuration and no visible vulnerabilities or exposed sensitive data. The absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security transparency and readiness. Overall, the website is trustworthy and professional, with a solid business credibility score. The main risks relate to privacy compliance gaps and missing security headers. Strategic improvements in these areas would enhance the site's security posture and regulatory compliance.

K

Konzeptwerk Neue Ökonomie

konzeptwerk-neue-oekonomie.org

0

Konzeptwerk Neue Ökonomie is a German non-profit thinktank and educational organization founded in 2012, focusing on social-ecological transformation, climate justice, and transformative education. The organization targets social movements, educators, activists, and the general public interested in sustainable societal change. Their offerings include research, educational workshops, publications, podcasts, and consulting services. The website is professionally designed, content-rich, and well-structured, supporting multiple languages and providing clear navigation and user engagement features such as newsletters and contact forms. Technically, the site is built on WordPress with modern plugins and technologies, hosted by a reputable provider, and optimized for performance and mobile devices. Security posture is strong with HTTPS, privacy-conscious analytics (Matomo) with explicit consent, and cookie management, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the organization's history. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

O

openPetition gGmbH

openpetition.eu

0

openPetition gGmbH operates a politically neutral, non-profit online platform that enables citizens to start, sign, and promote petitions across the European Union and other countries. With a user base of approximately 15 million people, the platform facilitates grassroots democracy and political participation by providing tools and guidelines for effective petitioning. The website is professionally designed, multilingual, and offers a clear user experience focused on civic engagement and transparency.

A

Agenda della Disabilità

agendadelladisabilita.it

0

Agenda della Disabilità is a non-profit organization based in Italy focused on promoting disability inclusion and sustainable community development. The website serves as a platform for community engagement, advocacy, and dissemination of inclusive initiatives. It targets a general audience interested in social inclusion and disability rights. The organization maintains a modest but consistent online presence with active social media channels and event calendars. Technically, the website is built on WordPress using popular plugins such as Elementor, Yoast SEO, and Google Analytics, reflecting a moderate level of digital maturity. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site enforces HTTPS and DNSSEC, indicating a good baseline security posture. However, it lacks some advanced security headers and explicit security policies, which could be improved. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy or terms of service pages. Overall, the website is trustworthy and professional, with no signs of malicious activity or adult content.

E

Economy for the Common Good - Sverige

ecgsverige.se

0

ECG Sverige is a small non-profit organization dedicated to promoting the Economy for the Common Good movement in Sweden. Their website provides information about their mission to create an economic system focused on societal and environmental well-being. They offer services such as the ECG-bokslut, which complements traditional financial statements by measuring societal contributions. The organization targets businesses, municipalities, and individuals interested in sustainable economic models. Technically, the website is built on WordPress using the Genesis Framework and Yoast SEO plugin, hosted by Oderland. It employs modern web technologies and includes a cookie consent mechanism and privacy policy, indicating good digital maturity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and DNSSEC. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though it could improve security policies and contact information visibility.

E

ECOnGOOD Switzerland

gwoe.ch

0

ECOnGOOD Switzerland is a non-profit organization dedicated to promoting the Gemeinwohl-Ökonomie (Economy for the Common Good) model within Switzerland. It operates as a local branch of an international movement active in 35 countries, focusing on ethical, sustainable, and fair economic practices. The organization targets companies, individuals, municipalities, and educational institutions, offering certification labels, educational programs, and community engagement opportunities. The website reflects a professional and consistent brand image with clear navigation and multilingual support. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including jQuery, Google reCAPTCHA v3, and Matomo analytics. It employs various plugins for forms, cookie consent, and search functionality, indicating a mature digital infrastructure. Performance and mobile optimization are good, though accessibility could be improved. Security posture is strong with HTTPS enforced, secure forms, and privacy compliance, though formal security policies and incident response contacts are not published. Overall, the site demonstrates a high level of trustworthiness and professionalism with no detected vulnerabilities or suspicious elements. Privacy and cookie policies are comprehensive and GDPR compliant. The organization maintains active social media presence and transparent contact information, enhancing credibility. The domain registration data aligns well with the website's claims, supporting legitimacy. Strategic recommendations include publishing a formal security policy, adding incident response contact details, implementing a security.txt file, and enhancing accessibility features to further strengthen security and compliance posture.

E

Economy for the Common Good

econgood.org

0

Economy for the Common Good is an international non-profit movement promoting an alternative economic model focused on social justice, environmental sustainability, and human dignity. The organization provides tools such as the Common Good Balance Sheet to measure and improve the impact of companies, municipalities, and educational institutions. Their website reflects a mature digital presence with rich content, international reach, and active community engagement. Technically, the site is built on WordPress with modern plugins and SEO optimizations, offering a good user experience and mobile responsiveness. Security posture is solid with HTTPS enabled, though security headers and vulnerability disclosures are lacking. Privacy compliance is limited due to missing explicit policies and cookie consent mechanisms. Overall, the site is trustworthy and professional but could improve compliance and security transparency.

H

Helvetas Germany

helvetas.de

0

Helvetas Germany is a well-established independent development organization focused on capacity building and humanitarian aid across Africa, Asia, and Latin America. The organization operates as a medium-sized non-profit entity with a strong presence in Germany and international subsidiaries, including the USA. Their key services include emergency response, water and sanitation, agriculture, vocational training, and climate action. The website reflects a professional and consistent brand image with comprehensive content targeting donors, partners, and development professionals. Technically, the website employs modern frameworks such as Bootstrap and integrates Google Tag Manager and OneTrust for analytics and cookie consent, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance, although there is room for improvement in incident response transparency and vulnerability disclosure. Overall, the website is trustworthy, well-optimized for SEO and mobile, and compliant with GDPR regulations.

InMaat Foundation is a small non-profit organization founded in 2014, dedicated to supporting organizations that challenge systemic gender oppression and promote justice and human rights. The website reflects a focused mission with relevant content aimed at social justice advocates and organizations. The foundation maintains a consistent brand presence and offers storytelling and inspirational content to engage its audience. Technically, the website is built on a modern stack likely using Craft CMS, hosted behind Cloudflare DNS, and employs Google Tag Manager for analytics. The site is mobile optimized with good SEO practices but lacks some accessibility features and cookie consent mechanisms. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks DNSSEC and security headers. No explicit security or incident response policies are published, which could be improved. Overall, the domain registration is consistent with the organization's history and mission, indicating legitimacy. The site is safe for general audiences with no adult or questionable content.

G

Global Impact Producers Alliance

globalimpactproducers.org

0

Global Impact Producers Alliance (GIPA) is a non-profit community-led network dedicated to nurturing and amplifying the work of impact producers. The organization provides resources, a directory, and a platform for community engagement, supported by reputable partners such as Doc Society and Perspective Fund. The website is professionally designed using WordPress and hosted on Linode, reflecting a moderate level of technical maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies, and no contact information is provided on the homepage, which may affect user trust and regulatory compliance. Overall, the site is safe, trustworthy, and serves a niche non-profit audience effectively.

U

Unternehmen für Familien

unternehmen-fuer-familien.at

0

Unternehmen für Familien is a well-established Austrian non-profit network dedicated to promoting family-friendly workplace and community environments. The organization facilitates open exchange, networking events, and provides best practice examples to support companies and municipalities in implementing family-friendly measures. The website reflects a mature digital presence with modern technologies such as React, Google Tag Manager, and Cookiebot for privacy compliance. It is mobile-optimized and professionally designed, targeting Austrian businesses and communities committed to family-friendly policies. Security posture is solid with HTTPS and reCAPTCHA integration, though explicit security headers and incident response policies are not published. Overall, the site demonstrates a trustworthy and credible platform for its mission.

G

Gewerkschaft BAU-HOLZ (GBH)

gbh.at

0

Gewerkschaft BAU-HOLZ (GBH) is a prominent Austrian trade union representing workers in the construction and wood industries. The website serves as a comprehensive portal for members, offering services such as legal protection, education, collective bargaining information, and support benefits. It is well integrated with its parent organization ÖGB and related media services like GBH-News and GBH-TV. The site targets union members and workers in Austria, providing relevant news, campaigns, and member-exclusive offers. Technically, the website is built on Adobe Experience Manager, leveraging modern web technologies including Usercentrics for consent management, self-hosted Matomo analytics, and hCaptcha for form security. The site is performant, mobile-optimized, and accessible, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses bot protection on forms, and respects user privacy with a comprehensive GDPR-compliant privacy policy. However, explicit security policies and incident response contacts are not published, representing an area for improvement. No critical vulnerabilities or suspicious elements were detected. Overall, the website presents a professional, trustworthy, and secure platform aligned with the organization's mission. It effectively balances user experience, privacy compliance, and technical robustness, making it a reliable resource for its members.

N

NABU

nabu-netz.de

0

NABU-Netz is a digital collaboration platform operated by NABU, a well-established German non-profit environmental organization. The website serves as a hub for information, communication, and resource sharing among NABU volunteers and staff. It offers multiple integrated services such as a Wiki, Chat, Media Library, Publishing tools, E-Learning, and an Education Calendar, all aimed at supporting the organization's mission and community engagement. The platform emphasizes ease of access through a centralized NABU-Login system, enhancing user experience and security. Technically, the website is built on modern web technologies including Laravel Livewire and Alpine.js, with a focus on responsive design and moderate performance. It employs Matomo analytics for privacy-conscious user tracking and integrates third-party services like CleverReach for newsletter management. The site uses HTTPS with proper CSRF protections and demonstrates good security hygiene, although explicit security headers and incident response policies are not publicly documented. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with comprehensive privacy and cookie policies in place, aligned with GDPR requirements. However, the absence of a dedicated security policy or vulnerability disclosure program suggests room for improvement in transparency and incident readiness. Overall, NABU-Netz presents a trustworthy, professional, and well-maintained digital presence for a non-profit organization. The platform effectively supports its community with relevant services and maintains a good balance between usability, privacy, and security. Strategic enhancements in security documentation and header implementation could further strengthen its security posture and user trust.

NABU Landesverband Bremen e.V. is a well-established non-profit environmental organization active since 1995, focusing on nature conservation, environmental education, and community engagement in Bremen, Germany. The website serves as a comprehensive platform for information dissemination, volunteer coordination, event promotion, and fundraising. It targets nature enthusiasts, families, children, and volunteers, positioning itself as a leading regional environmental advocate with nearly 10,000 members. Technically, the site is built on the IMPERIA CMS platform, utilizing modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent management implemented, though some security headers could be enhanced. Privacy compliance is strong, with clear policies and GDPR adherence. Overall, the website reflects a professional, trustworthy, and user-friendly digital presence supporting the organization's mission.

L

Landesbund für Vogel- und Naturschutz in Bayern e.V.

lbv.de

0

The Landesbund für Vogel- und Naturschutz in Bayern e.V. (LBV) is a well-established non-profit organization dedicated to nature conservation, particularly bird and habitat protection in Bavaria, Germany. Founded in 1909, LBV operates a comprehensive website that serves as a hub for environmental education, conservation projects, membership engagement, and fundraising. The site targets a broad audience including environmental enthusiasts, schools, volunteers, and corporate partners. The organization maintains a strong market position as a leading conservation entity in the region, supported by a consistent brand and extensive content offerings.

The website naturwaehler.de is operated by NABU Sachsen, a regional branch of the German non-profit nature conservation organization NABU. It serves as an informational platform focused on nature conservation politics in Saxony, providing detailed political party responses to environmental questions related to state elections. The site targets environmentally conscious citizens and stakeholders interested in transparency and political engagement on ecological issues. Technically, the site uses a traditional Bootstrap 3 framework with jQuery and standard HTML/CSS. It lacks modern CMS or advanced analytics and does not implement privacy or cookie policies, which is a compliance gap. Security posture is basic with no evident security headers or HTTPS information in the provided data. Contact information is clearly presented, enhancing trust. Overall, the site is professional and content-rich but would benefit from improved security and privacy compliance.

N

Home | NAJU Sachsen

naju-sachsen.de

0

NAJU Sachsen is a regional organization focused on youth and nature activities in Saxony, Germany. The website is primarily informational with content in German and uses Bootstrap 4.5.2 for its front-end framework. The site appears to be small-scale and non-commercial, targeting a general audience interested in environmental and youth engagement. Technical infrastructure is basic but functional, with no detected advanced CMS or analytics tools. Security posture is moderate with HTTPS likely enabled (not explicitly confirmed), but lacks security headers and privacy compliance documentation. No contact or incident response information is provided, limiting user trust and compliance with GDPR. Overall, the site is safe and appropriate for general audiences but would benefit from enhanced security and privacy features.

NABU - Naturschutzbund Deutschland e.V. is a well-established German non-profit organization dedicated to nature conservation and environmental protection. With a history spanning over 125 years, NABU engages a broad audience through campaigns, education, membership, and fundraising. Their website reflects a professional and comprehensive digital presence, emphasizing transparency, community involvement, and environmental advocacy. The organization leverages modern web technologies and analytics while maintaining strong privacy and cookie consent compliance. Contact information and multiple engagement channels are clearly provided, enhancing user trust and accessibility. Technically, the website is built on the IMPERIA CMS platform and integrates advanced analytics tools such as Matomo and Google Tag Manager, alongside marketing pixels from Facebook and TikTok. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers could be explicitly declared to enhance security posture. HTTPS is enforced, and no critical vulnerabilities or exposed sensitive data were detected. From a security perspective, NABU demonstrates good practices including bot detection on forms and cookie consent management. However, the absence of a public security policy or incident response contact is noted. The WHOIS data aligns well with the organization's identity, showing a consistent and trustworthy domain registration. Overall, the website scores highly on content quality, technical implementation, privacy compliance, and business credibility, making it a reliable and professional platform for environmental advocacy. Recommendations include enhancing security headers, publishing a security policy, and continuous monitoring of third-party scripts to maintain privacy and security standards. These steps will further solidify NABU's digital trustworthiness and compliance in an evolving regulatory landscape.

T

THE ELI AND EDYTHE BROAD FOUNDATION

broadfoundationreport.org

0

The Eli and Edythe Broad Foundation website is a professionally designed Squarespace site focused on celebrating 50 years of philanthropic giving. The foundation operates as a non-profit entity targeting donors and the philanthropic community with storytelling content about its history and impact. The technical infrastructure is modern, leveraging Squarespace CMS and standard web technologies, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible GDPR compliance indicators. The lack of contact information and WHOIS data reduces business credibility and trust. Overall, the site is functional and professional but requires improvements in transparency, privacy, and security documentation to enhance trust and compliance.

K

KINDERVEREINIGUNG® LEIPZIG e. V.

spielmobilprojekt.de

0

Spielmobilprojekt is a non-profit initiative under KINDERVEREINIGUNG® LEIPZIG e. V., providing mobile play services with their Spielmobile vehicles in various Leipzig neighborhoods. Their focus is on open, generational, and pedagogical play activities, supporting community engagement and youth work. The website is well-structured, informative, and targets families, children, and educators in Leipzig. Technically, the site is built on WordPress with modern plugins and includes cookie consent mechanisms, indicating a good level of digital maturity. Security posture is adequate with HTTPS and reCAPTCHA usage, though it lacks some advanced security headers and explicit security policies. Overall, the site is legitimate, trustworthy, and compliant with GDPR, with clear contact information and partner affiliations.

K

Kulturwerkstatt KAOS

kaos-leipzig.de

0

Kulturwerkstatt KAOS is a well-established non-profit cultural center based in Leipzig, Germany, focused on providing artistic and educational programs for children, youth, and young adults. Operating since 1992 under the KINDERVEREINIGUNG® Leipzig e.V., it offers a diverse range of courses, workshops, events, and community engagement activities. The organization enjoys strong local support from city and state cultural offices and maintains a clear digital presence with comprehensive content and contact information. Technically, the website is built on WordPress with modern plugins and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected, and privacy compliance is well addressed with GDPR-aligned policies. Overall, KAOS presents a trustworthy and professional online presence aligned with its community-focused mission.

K

Kompetenzzentrum Internationale Jugendarbeit und non-formale Bildung

kvleipzig-international.de

0

The Kompetenzzentrum Internationale Jugendarbeit und non-formale Bildung is a small non-profit organization based in Leipzig, Germany, focused on international youth work and non-formal education. The website presents a professional and consistent brand image, offering services such as youth exchanges, training seminars, and workshops. It targets youth and professionals in the youth work sector, supported by local and EU funding partners. Technically, the site is built on WordPress using modern themes and plugins, with good SEO and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and well-maintained, reflecting the organization's mission and activities effectively.

Ö

Österreichisches Spendengütesiegel

osgs.at

0

The Österreichisches Spendengütesiegel is an Austrian non-profit organization dedicated to certifying charitable organizations to ensure transparency and trust in the donation sector. The website serves as an informational and trust-building platform targeting donors and charitable entities within Austria. It offers certification services and promotes the quality seal as a mark of reliability. Technically, the website is built on WordPress using the Elementor framework, with modern fonts and responsive design elements, providing a good user experience and moderate performance. Security-wise, the site employs HTTPS and several security headers, indicating a solid baseline security posture, though it lacks visible incident response or security policy disclosures. Privacy compliance is limited, with no explicit privacy or cookie policies detected, which could be improved to meet GDPR standards. Overall, the domain registration data aligns well with the website's claims, supporting its legitimacy and trustworthiness.

C

Culture accessible Genève

culture-accessible.ch

0

Culture accessible Genève operates as a non-profit platform dedicated to promoting cultural accessibility for people with disabilities in the Geneva region. The website provides comprehensive listings of accessible cultural events, venues, and accessibility measures, targeting disabled audiences and the general public interested in inclusive culture. The platform maintains partnerships with local government and accessibility organizations, reinforcing its regional leadership in this niche. Technically, the website is built on October CMS, leveraging modern web technologies including Google Analytics, Google Tag Manager, and ReadSpeaker for accessibility. The site demonstrates good mobile optimization, accessibility features, and SEO practices, although performance is moderate. The absence of explicit privacy and cookie policies indicates room for compliance improvement. From a security perspective, the site uses HTTPS and implements basic anti-spam measures in its contact form. However, it lacks explicit security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is privacy protected but consistent with the non-profit nature of the project, supporting legitimacy. Overall, the website is trustworthy, well-designed, and focused on its mission, but should enhance privacy compliance and security headers to improve its security posture and regulatory adherence.

Gewerkschaft Bau-Holz operates as a trade union representing workers in the construction and wood industries in Austria. The website serves as a media platform providing news, interviews, thematic videos, and archival content targeted primarily at union members and stakeholders. The organization maintains a consistent brand presence with official logos and social media channels, reinforcing its position as a recognized non-profit entity within Austria. Technically, the website employs standard web technologies including jQuery and Google Fonts, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data limits domain trust assessment, but the website content and external links support legitimacy. Overall, the site is professional, user-friendly, and compliant with GDPR requirements.

E

Evangelische Gesamtkirchengemeinde Ulm

ulmer-muenster.de

0

The Evangelische Gesamtkirchengemeinde Ulm operates the Ulmer Münster, serving as a religious and community organization in Ulm, Germany. The website provides comprehensive information about visiting hours, tours, church services, music ensembles, and community activities. It targets local residents, visitors, and church members, positioning itself as a key cultural and religious institution in the region. The business model is non-profit, focusing on community engagement and cultural preservation. Technically, the website is built on the ChurchDesk CMS platform, which is tailored for church organizations. It uses modern web technologies including JavaScript and jQuery, and integrates Cookiebot for GDPR-compliant cookie consent management. The site is hosted on servers associated with kasserver.com, with good mobile optimization and accessibility features. Performance is moderate, with a well-structured navigation system and SEO-friendly metadata. From a security perspective, the site enforces HTTPS and employs a robust cookie consent mechanism. However, explicit security headers are not detected, and no dedicated security policy or incident response information is published. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies in German, reflecting GDPR adherence. Overall, the website presents a low-risk profile with a professional and trustworthy online presence. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen security posture and trust.

S

SUN Sportmanagement GmbH

ulmer-klimalauf.de

0

Ulmer Klimalauf is a virtual running event organized by SUN Sportmanagement GmbH, focused on climate protection through community participation. The event encourages participants to collect kilometers by running, walking, or hiking, supporting climate-related projects such as water supply initiatives in Uganda. The website is well-branded, professionally designed, and provides comprehensive information about the event, partners, and sustainability efforts. Technically, the site is built on WordPress with Elementor and uses Cloudflare DNS for performance and security. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and cookie consent mechanisms could be improved. Contact information and privacy policies are clearly presented, supporting GDPR compliance. Overall, the site is trustworthy and serves its target audience effectively.

S

Società nazionale di mutuo soccorso Cesare Pozzo ETS

cesarepozzoperte.it

0

The website secure.cesarepozzoperte.it serves as a secure login portal for the Società nazionale di mutuo soccorso Cesare Pozzo ETS, a non-profit mutual aid society based in Italy. The organization provides membership services to individuals and groups, particularly those under collective agreements. The site facilitates member access with a user code and password system, supported by clear instructions and assistance contact information. The business is positioned as an established mutual aid entity with a focus on social support and membership management. Technically, the website employs modern web technologies including Alpine.js for interactivity, SVG for branding graphics, and standard CSS and JavaScript assets. The site is mobile-optimized with a responsive design and includes accessibility considerations. Performance is moderate, with deferred script loading and structured content. SEO and metadata are basic but sufficient for the site's purpose. From a security perspective, the site enforces HTTPS with a valid SSL configuration and includes CSRF tokens in forms, indicating good security hygiene. However, security headers are not explicitly detected, and no incident response or vulnerability disclosure policies are published. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. Overall, the website presents a trustworthy and professional front for the mutual aid society, with a solid security posture and good privacy practices. Recommendations include enhancing security headers, publishing incident response contacts, and adding terms of service to improve compliance and user trust.

M

MOL-Új Európa Alapítvány

molujeuropaalapitvany.hu

0

MOL-Új Európa Alapítvány is a Hungarian non-profit foundation established in 2022, focusing on supporting Central European contemporary art, cultural, social, sports, and sustainability programs. The foundation operates primarily through grant programs and partnerships, targeting a broad audience interested in cultural and social development. The website reflects a consistent brand identity and provides relevant information about its activities and supported initiatives. Technically, the site is built on Joomla CMS with Bootstrap framework, offering a responsive and moderately performant user experience. Security posture is adequate with HTTPS and CSRF protections, though lacking some security headers and explicit incident response policies. Privacy compliance is partially met with available privacy and cookie policies but missing explicit consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned within its sector.

D

Deutscher Musikrat gGmbH / Bundesjugendorchester

bjo-alumni.de

0

The Bundesjugendorchester Alumni website serves as a dedicated networking and information platform for former members of the Federal Youth Orchestra in Germany. It provides alumni with tools to connect, access event information, subscribe to newsletters, and purchase merchandise. The platform is supported by the Deutscher Musikrat gGmbH and leverages a specialized CMS by Paulbergman GmbH (Alumnii). The site is well-structured, mobile-optimized, and integrates modern web technologies including Bootstrap, jQuery, and Matomo analytics. Security measures include HTTPS, CAPTCHA protection, and a comprehensive cookie consent mechanism. Privacy policies are detailed and GDPR compliant, with clear data protection officer contact information. However, no explicit terms of service or security policy pages were found.

DIE VIELEN is a German non-profit organization dedicated to promoting an open, solidaric, diverse, and democratic society. The website serves as a platform to present their advocacy campaigns, cultural projects, event calendar, and press resources. The organization targets a general audience interested in social justice and anti-right-wing extremism initiatives. The website is built on WordPress with modern frontend technologies such as Vue.js, indicating a moderate level of digital maturity. Hosting is managed via domaincontrol.com name servers, commonly associated with GoDaddy. From a security perspective, the website enforces HTTPS and uses secure form submission endpoints, but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The site does not appear to use analytics or tracking services, suggesting minimal user tracking. Overall, the security posture is adequate but could be improved with additional headers and compliance documentation. The website content is safe for general audiences with no adult or questionable content detected. Navigation and design quality are good, providing a professional user experience. Contact options are limited to forms without direct email or phone contacts. The WHOIS data is minimal but consistent with a legitimate domain registration. No WAF or blocking mechanisms were detected, allowing full content access for analysis.

Shaw Trust Accessibility Services is a UK-based organization specializing in digital and physical accessibility solutions for private, public, and charitable sectors. They offer a range of services including website accessibility testing, consultancy, user testing, and subscription services. The organization is well-positioned in the accessibility market with notable clients such as McDonald's, Just Eat, Barclays, and government agencies, supported by certifications and positive testimonials. Technically, the website is built on WordPress with modern technologies like Google Analytics, Tag Manager, and reCAPTCHA, ensuring good SEO, accessibility, and user experience. Security posture is solid with HTTPS and form protections, though lacking explicit published security policies or incident response plans. The WHOIS data is unavailable due to domain naming rules errors, which is unusual but the website content and branding strongly indicate legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for accessibility services.

D

Deutscher Spendenrat e.V.

spendenrat.de

0

Deutscher Spendenrat e.V. is a well-established German non-profit umbrella organization focused on promoting trust and transparency in the donation sector. With over 70 member organizations and a recognized donation certification process audited by independent accountants, it serves as a key trust intermediary between donors and charitable organizations. The website reflects a mature digital presence built on WordPress, optimized for mobile and SEO, and includes comprehensive content about membership, certification, and reports. Technically, the site uses modern web technologies and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and no exposed sensitive data, though some security headers and explicit security policies are absent. Overall, the domain registration data aligns well with the organization's history and legitimacy, supporting a high trust rating.

U

UIL (Unione Italiana del Lavoro)

zeromortisullavoro.it

0

The website zeromortisullavoro.it represents a campaign by the Italian labor union UIL focused on eliminating workplace deaths. The campaign is non-profit and targets Italian workers and labor communities to raise awareness about workplace safety. The domain is registered since 2021 and is consistent with the campaign's timeline. Technically, the website is built on WordPress but currently suffers from a critical error page that severely limits content accessibility and user experience. No privacy or cookie policies are present, and no contact information is available on the accessible page. Security posture is weak with no detected security headers or incident response information, although DNSSEC is enabled at the domain level. Overall, the site is in a poor state technically and from a compliance perspective, which impacts trust and professionalism.

Landesmusikrat Brandenburg e.V. is a well-established non-profit umbrella organization representing music associations, institutions, and individuals in Brandenburg, Germany. Founded in 1990, it serves as an advocate and advisor in music policy, organizes events, and offers educational and funding programs. The website reflects a professional and content-rich platform targeting musicians, cultural institutions, and the general public interested in music. Technically, the site uses modern web technologies including a CMS likely Drupal, JavaScript libraries for UI components, and is hosted on rzone.de. The site is mobile-optimized and performs moderately well. Security posture is good with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and explicit incident response information. Privacy compliance is partial with a clear privacy policy but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, with room for improvement in security and privacy transparency.