Security Directory

F

Fundación ONCE

fundaciononce.es

0

Fundación ONCE is a prominent Spanish non-profit organization dedicated to the social inclusion and cooperation for people with disabilities. It operates under the Grupo Social ONCE umbrella and provides a wide range of services including training, employment support, accessibility innovation, and international cooperation. The website reflects a mature and professional digital presence with comprehensive content and strong branding consistency. Technically, the site is built on Drupal CMS with modern web technologies and integrates multiple analytics and marketing tools while maintaining good privacy compliance and security posture. Security best practices such as HTTPS, security headers, and cookie consent mechanisms are implemented, although there is room for improvement in incident response transparency and vulnerability disclosure. Overall, the website is trustworthy, well-maintained, and aligned with its mission and audience.

W

Women’s Environment & Development Organization

wedo.org

0

Women’s Environment & Development Organization (WEDO) is a well-established global non-profit advocacy organization focused on promoting human rights, gender equality, and environmental integrity. Founded in 1991, WEDO operates internationally, engaging in advocacy, capacity building, and coalition development to influence global and national policies. The organization targets women's rights advocates, environmental activists, policymakers, and supporters of gender equality worldwide. Their business model centers on non-profit advocacy and movement building, supported by a strong digital presence and active social media engagement. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and Cloudflare DNS services. The site demonstrates good mobile optimization, clear navigation, and solid SEO practices. Performance is moderate, with room for improvement in accessibility and security headers. The domain is long-standing, registered since 1996, consistent with the organization's history, and hosted securely with HTTPS enabled. From a security perspective, the site employs HTTPS and Cloudflare DNS but lacks DNSSEC and Content-Security-Policy headers, which are recommended for enhanced security. No sensitive data exposure or vulnerable libraries were detected. Privacy compliance is partial; while a comprehensive privacy policy exists, cookie consent mechanisms and GDPR compliance indicators are limited. No incident response contacts or vulnerability disclosure policies were found. Overall, WEDO’s website is professional, trustworthy, and content-rich, reflecting its mission and credibility. Security and privacy practices are adequate but could be strengthened to meet higher compliance standards. The site is safe for general audiences with no adult or explicit content. Strategic recommendations include implementing DNSSEC, CSP headers, cookie consent banners, and a security.txt file to improve security posture and compliance.

S

Slysavarnafélagið Landsbjörg

flugeldar.is

0

Slysavarnafélagið Landsbjörg operates the website flugeldar.is as a platform to provide information about fireworks sales, safety guidelines, and rescue services in Iceland. The organization is a well-established non-profit entity focused on public safety and community support. The website serves as an informational and awareness tool, targeting the Icelandic public, especially around the fireworks season. Technically, the site is built on modern frameworks such as Next.js and uses Prismic CMS for content management, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and published policies. The absence of WHOIS data for the domain is a notable concern but does not outweigh the legitimacy signals from the content and external references. Overall, the site is professional, trustworthy, and well-maintained.

S

Slysavarnafélagið Landsbjörg

icesar.com

0

The Icelandic association for search, rescue & injury prevention, known as Slysavarnafélagið Landsbjörg, operates as a nonprofit organization dedicated to saving lives and preventing accidents in Iceland. The organization relies heavily on volunteer efforts and donations, positioning itself as a key player in Iceland's emergency response and safety ecosystem. The website reflects this mission with clear calls for support and detailed information about their activities and sponsors. Technically, the website is built on modern frameworks such as Next.js and Prismic CMS, ensuring a responsive and accessible user experience. The presence of Google Tag Manager and CookieHub indicates a moderate level of digital maturity with some privacy compliance mechanisms in place. Security-wise, the site enforces HTTPS and uses cookie consent but lacks advanced security headers and published security policies, which could be improved to enhance trust and compliance. The absence of WHOIS data reduces transparency but does not necessarily indicate illegitimacy given the organization's public presence and sponsorships. Overall, the site is professional and trustworthy but could benefit from enhanced security and privacy disclosures.

S

Southern Poverty Law Center

splcenter.org

0

The Southern Poverty Law Center (SPLC) is a well-established non-profit organization dedicated to civil rights advocacy, legal action, and educational outreach focused on racial justice and combating hate crimes. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. It serves a broad audience interested in social justice, legal resources, and policy advocacy. Technically, the site is built on WordPress with modern plugins and integrations such as Gravity Forms and Google Tag Manager, ensuring a robust and scalable infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. Overall, the site demonstrates high professionalism and trustworthiness, suitable for its non-profit mission.

Č

Český svaz ochránců přírody

uklidmesvet.cz

0

Ukliďme svět is a well-established non-profit environmental campaign operated by Český svaz ochránců přírody, focusing on organizing community clean-up events across the Czech Republic since 1993. The website serves as a hub for news, event registration, educational content, and volunteer coordination, supported by governmental and municipal bodies. The platform demonstrates a strong market position within the environmental non-profit sector, leveraging partnerships with logistics and local organizations to enhance its outreach and impact. Technically, the site is built on WordPress with modern plugins for SEO, privacy compliance, and user engagement, hosted on a Czech hosting provider. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Security-wise, the site uses HTTPS and privacy-respecting analytics (Matomo), but lacks some advanced security headers and explicit incident response policies. Privacy compliance is robust with clear cookie consent and privacy policies in Czech language. Overall, the website is trustworthy, professional, and aligned with its mission, with minor technical improvements recommended to enhance security and accessibility.

The Gates Foundation website represents a globally recognized philanthropic organization dedicated to fighting poverty, disease, and inequity worldwide. The site targets a broad audience including donors, partners, and stakeholders in global health and development. It offers comprehensive information about its initiatives and programs, reflecting its position as a leading non-profit entity. The website's content is professionally presented with clear navigation and consistent branding, reinforcing its credibility and trustworthiness. From a technical perspective, the site employs modern web technologies including Google Tag Manager, Google reCAPTCHA for bot protection, and OneTrust for cookie consent management, indicating a mature digital infrastructure. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices. Performance is moderate, with room for optimization. Security posture is strong with HTTPS enforced and multiple security headers present. The use of reCAPTCHA and cookie consent mechanisms further enhance security and privacy compliance. However, the absence of a publicly available security policy or incident response information is a gap that could be addressed to improve transparency. No vulnerabilities or exposed sensitive data were detected. Overall, the website is a secure, professional, and privacy-conscious platform that effectively supports the Gates Foundation's mission. The lack of WHOIS data limits domain registration trust analysis, but the site's content and branding strongly support its legitimacy. Strategic recommendations include publishing explicit security policies, adding vulnerability disclosure information, and maintaining regular audits of third-party scripts to sustain security and compliance.

H

Hilton Foundation

hiltonfoundation.org

0

The Conrad N. Hilton Foundation is a well-established non-profit organization dedicated to improving lives globally through targeted philanthropic initiatives. Their website reflects a strong commitment to humanitarian aid, grantmaking, and honoring impactful social causes such as early childhood development, homelessness, and refugee support. The foundation positions itself as a leader in the non-profit sector with a clear mission and consistent branding. Technically, the website is built on WordPress with modern plugins and frameworks, offering a professional and mobile-optimized user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. Overall, the site demonstrates high professionalism and trustworthiness, though WHOIS data is unavailable likely due to privacy protection, which is justified for this entity type.

T

The Canadian Partnership for Women and Children’s Health (CanWaCH)

canwach.ca

0

The Canadian Partnership for Women and Children’s Health (CanWaCH) is a Canadian non-profit organization dedicated to advancing the health and rights of women and children globally. Established in 2016, CanWaCH operates as a partnership of Canadian organizations and global citizens, providing services such as data exchange, resource centers, advocacy, and membership engagement. The organization maintains a strong market position within the Canadian global health sector, supported by a professional and content-rich website that effectively communicates its mission and services. Technically, the website is built on WordPress with a modern tech stack including Bootstrap 4, jQuery, and various plugins for SEO, GDPR compliance, and user engagement. Hosting and DNS services are provided by reputable providers including Go Daddy and Cloudflare. The site demonstrates good performance, mobile optimization, and accessibility, with comprehensive SEO and structured data implementation. From a security perspective, the site uses HTTPS, reCAPTCHA for forms, and cookie consent management, reflecting a solid security posture. However, there is room for improvement in enabling DNSSEC and implementing additional security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. Overall, CanWaCH presents a low-risk profile with a high level of professionalism and trustworthiness. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and adding a terms of service page to further strengthen compliance and user trust.

C

Cause Inspired

causeinspiredmedia.com

0

Cause Inspired is a specialized digital marketing agency focused on empowering nonprofit organizations through Google Ad Grants and related marketing services. Established in 2014, the company offers a suite of services including Google Ad Grants management, website development, branding, and SEO. Their market position is that of a niche expert serving nonprofits to maximize their digital outreach and ROI. The website is professionally designed, mobile-optimized, and integrates modern technologies such as WordPress, WPBakery, and various analytics and tracking tools. Social media presence is strong, supporting their credibility and outreach efforts. However, the site lacks explicit privacy and terms of service policies, which are important for compliance and trust.

A

Amref Health Africa UK

amrefuk.org

0

Amref Health Africa UK is a well-established non-profit organization focused on improving health outcomes across 35 African countries. The website clearly communicates their mission, impact, and key services including health worker training, community partnerships, and advocacy. Their market position as a leading African health NGO is supported by detailed impact statistics and a professional online presence. Technically, the website uses modern JavaScript libraries, is mobile optimized, and employs a reputable CMS (Umbraco). Security posture is good with HTTPS and domain status protections, though DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, professional, and well maintained.

A

Amref Health Africa Canada

amrefcanada.org

0

Amref Health Africa Canada is a well-established non-profit organization focused on improving health outcomes across Africa through community-led programs. The organization operates with a Canadian office that supports fundraising, advocacy, and engagement efforts. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on WordPress with modern plugins and integrations, including SEO and security tools. Security posture is good with HTTPS and reCAPTCHA implemented, though DNSSEC is not enabled and no explicit security policy is published. Privacy compliance is strong with visible cookie consent and a detailed privacy policy. Overall, the domain registration data supports the legitimacy and long-standing presence of the organization.

A

Allianz Foundation

allianzfoundation.org

0

The Allianz Foundation website represents a non-profit organization formed by the merger of Allianz Kulturstiftung and Allianz Umweltstiftung. The foundation focuses on supporting initiatives in social justice, environment, culture, and the arts, aiming for systemic change. The website is professionally designed using modern technologies such as Gatsby and Tailwind CSS, delivering a fast and mobile-optimized user experience. Security posture is adequate with HTTPS enabled and domain registration consistent with the foundation's history, though DNSSEC is not enabled and security headers are missing. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and well-positioned but would benefit from enhanced privacy and security disclosures.

C

Centre de Rénovation Urbaine

cru-csv.be

0

Centre de Rénovation Urbaine is a small non-profit association based in Anderlecht, Belgium, focused on urban renovation and community development. The organization offers services such as renovation advice, neighborhood life activities, and digital services to local residents. The website is professionally designed using WordPress with the Kadence theme and blocks, providing a good user experience and mobile optimization. However, the site lacks privacy and cookie policies, and no explicit contact information is provided on the site. Security posture is moderate with HTTPS enabled but missing important security headers. WHOIS data is unavailable due to registry restrictions, which impacts transparency and trust. Overall, the website is functional and relevant for its community audience but could improve in compliance and security practices.

R

Red Cross EU Office

redcross.eu

0

The Red Cross EU Office website serves as the digital presence for the EU-level coordination and advocacy office representing the Red Cross National Societies and the IFRC. It provides policy dialogue, programming coordination, and advocacy services aimed at EU stakeholders and humanitarian actors. The website is well-branded, professionally designed, and offers comprehensive content relevant to its mission. The target audience includes EU Red Cross National Societies, humanitarian organizations, and EU policymakers. Technically, the website employs a modern tech stack including Matomo analytics for privacy-conscious tracking, Laravel-based cookie consent mechanisms, and a CMS identified as Typi. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Hosting details are not explicit but the domain registrar is GANDI, a reputable provider. From a security perspective, the site uses HTTPS with no visible security vulnerabilities or exposed sensitive data. Cookie consent is implemented properly, and tracking is minimal. However, the site lacks explicit security headers and does not publish security or incident response policies publicly. No vulnerability disclosure or security.txt file is present. Overall, the website is trustworthy, professional, and compliant with basic privacy standards, though it could improve by adding a privacy policy page and enhancing security headers. The domain registration is consistent with the organization's identity, supporting legitimacy and trustworthiness.

M

Moving Art Studio ASBL ALL2ALL.ORG, The Independent Network

recyclart.be

0

Recyclart is a well-established non-profit cultural center based in Brussels, Belgium, with a domain age dating back to 2000. The organization offers a diverse range of cultural events including art exhibitions, concerts, yoga sessions, and community activities, targeting a broad audience interested in arts and culture. The website reflects a consistent brand identity and provides clear contact information and partner affiliations, reinforcing its credibility in the cultural sector. Technically, the site uses legacy JavaScript libraries such as jQuery 1.7.1 and jQuery UI 1.8.16, which may pose security risks and indicate some technical debt. The design is professional with good content relevance and navigation, although mobile optimization and accessibility are basic. Security posture is moderate with HTTPS assumed but lacking modern security headers and explicit security policies. Privacy and cookie policies exist but lack explicit consent mechanisms, suggesting room for improvement in GDPR compliance. Overall, the website is trustworthy and functional but would benefit from technical modernization and enhanced security and privacy practices.

The Institute for the Study of Typography and Visual Communication (ISTVC) operates as a nonprofit academic organization focused on typography and visual communication research, conferences, and publications. The website presents a professional and consistent brand image targeting academics and professionals in the field. The organization has been active since 2012 and is affiliated with recognized associations, enhancing its credibility. Technically, the website is built on the Weebly platform, utilizing common web technologies such as jQuery and Google Analytics. It is mobile-optimized and moderately performant but lacks advanced accessibility features and comprehensive SEO optimizations. Security posture is adequate with HTTPS enforced and use of reCAPTCHA, but the absence of security headers and privacy policies indicates room for improvement. WHOIS data is unavailable, likely due to privacy protection, which is reasonable for this nonprofit entity. Overall, the website is trustworthy and functional but would benefit from enhanced privacy compliance and security hardening.

N

Newsmast Foundation

newsmastfoundation.org

0

Newsmast Foundation is a small non-profit educational charity focused on promoting the use of social media for good and advocating for open social media platforms. The website is built on WordPress and uses Google Tag Manager and Analytics for tracking visitor data. The site is accessible without any WAF or security blocking mechanisms and presents good design quality and mobile optimization. However, it lacks critical compliance documentation such as privacy and cookie policies, and no explicit contact information is provided. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosures. Overall, the domain registration details are privacy protected, which is common for non-profits, but limits transparency. The website is safe for general audiences and does not contain any adult or questionable content.

N

Nadační fond Veolia

nfveolia.cz

0

Nadační fond Veolia is a corporate foundation affiliated with the Veolia group in the Czech Republic, established in 2003. It supports social and environmental projects nationwide and regionally, promoting volunteerism and community engagement. The website presents a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site uses a custom CMS platform with Matomo analytics and includes a cookie consent mechanism, reflecting good privacy compliance. However, the absence of WHOIS data and lack of visible security headers indicate areas for improvement in security posture. Overall, the site is trustworthy and well-maintained but would benefit from enhanced security practices and domain registration transparency.

R

Remobil, z.s.

remobil.cz

0

Remobil, z.s. is a Czech non-profit organization dedicated to recycling mobile phones to protect the environment and support charitable causes. The organization has established itself as a reputable entity with partnerships across various sectors including telecommunications, logistics, and environmental services. Their website is professionally designed, content-rich, and targets individuals, companies, schools, and municipalities interested in sustainable mobile phone disposal and charity support. The business model revolves around collecting used mobile phones, recycling them responsibly, and donating proceeds to charity. The domain age and WHOIS data align with the organization's history, reinforcing legitimacy. Technically, the website is built on WordPress with modern plugins such as WPBakery Page Builder, Contact Form 7, and Complianz GDPR for cookie management. It employs Google reCAPTCHA v3 for bot protection and uses HTTPS with good SSL configuration. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some security headers could be improved. Privacy compliance is strong with a clear GDPR policy and cookie consent mechanism. Security posture is solid with no detected vulnerabilities or exposed sensitive data. However, the absence of a published security policy or incident response contact is noted. The site does not use extensive tracking or advertising networks, maintaining a minimal user tracking footprint. Overall, the website is trustworthy, professional, and compliant with relevant privacy regulations. Strategically, Remobil should enhance security headers, publish a security policy, and consider a vulnerability disclosure mechanism to further strengthen trust and security posture.

D

Den dárců | Slavíme Den dárců - oslavte ho s námi!

dendarcu.cz

0

The website www.dendarcu.cz serves as an informational and promotional platform for Den dárců (Donor Day), a non-profit initiative aimed at celebrating and promoting philanthropy in the Czech Republic. The site is associated with Fórum dárců and Nadace rozvoje občanské společnosti (NROS), indicating a focus on charitable giving awareness. The content is primarily in Czech and targets the general public interested in philanthropy and donor recognition. The site provides news updates, podcasts, and event information related to charitable activities. From a technical perspective, the website employs common web technologies such as jQuery, Google Fonts, and ShareThis for social sharing. It includes a cookie consent mechanism compliant with GDPR principles, though no explicit privacy policy or terms of service pages were found. The site appears moderately optimized for mobile devices and SEO, with a clear navigation structure and relevant meta tags. However, visible PHP warnings in the footer suggest server-side configuration issues that could impact user trust and security. Security posture is moderate but could be improved. There is no evidence of HTTPS enforcement or security headers in the provided data, and the presence of PHP errors indicates potential information leakage. The WHOIS lookup failed to retrieve domain registration details, which reduces trustworthiness but does not necessarily indicate malicious intent given the site's non-profit nature. No contact emails, phone numbers, or social media links were found, limiting direct communication channels. Overall, the website is functional and serves its informational purpose but requires improvements in security hardening, privacy transparency, and server configuration to enhance trust and compliance. Addressing these issues will strengthen its credibility and user confidence.

J

Jedu na dřeň

jedunadren.cz

0

Jedu na dřeň is a Czech non-profit campaign focused on bone marrow donor registration and raising awareness about the importance of saving lives through bone marrow donation. The website presents a well-established regional initiative with over 10 years of activity, supported by local government and sponsors. It targets the general public in the Czech Republic, encouraging them to register as donors and participate in related events. Technically, the site is built on WordPress using the Divi theme, with modern tracking and consent management tools such as Matomo Analytics and Complianz GDPR Cookie Consent. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain registration data aligns well with the website's claims, supporting its legitimacy and trustworthiness.

Č

Českomoravská myslivecká jednota

cmmj.cz

0

Českomoravská myslivecká jednota (ČMMJ) is a Czech non-profit organization dedicated to hunting and wildlife management. The website serves as an information portal for members and partners, providing organizational details, partner listings, and contact information. The organization maintains an active presence on major social media platforms, enhancing community engagement. Technically, the website is built on WordPress using a modern theme and plugins, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement, security headers, and use of reCAPTCHA to protect forms. Privacy and cookie policies are present and indicate GDPR compliance. However, the absence of WHOIS data due to privacy protection limits domain registration transparency. Overall, the site is professional, secure, and trustworthy, serving its target audience effectively.

F

Free Law Project

courtlistener.com

0

CourtListener is a well-established free legal research platform sponsored by the non-profit Free Law Project. It provides extensive access to millions of legal opinions, PACER documents, oral arguments, and judge information, targeting legal professionals, academics, journalists, and the general public. The platform emphasizes open access and transparency, supported by donations and memberships. Technically, the website uses modern web technologies including jQuery, Bootstrap, D3.js, and privacy-focused analytics (Plausible). The site is well-structured, mobile-optimized, and SEO-friendly, offering a professional user experience. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and cookie consent mechanisms could be improved. The absence of WHOIS data reduces transparency but does not detract from the site's legitimacy given its open source nature and non-profit backing. Overall, CourtListener represents a trustworthy and valuable resource in the legal research domain.

F

Fórum dárců

cenyforadarcu.cz

0

Fórum dárců operates a website dedicated to the 'Ceny Fóra Dárců' awards, recognizing significant public benefit projects and philanthropic efforts in the Czech Republic. The organization is a well-established national donor forum with over 20 years of experience and a strong partnership network including government bodies and major institutions. The website provides event news, award information, and partner details, targeting non-profit organizations, donors, and socially responsible companies. Technically, the site uses a custom PHP-based CMS with jQuery and Google Fonts, and implements cookie consent mechanisms to comply with privacy regulations. However, it lacks a dedicated privacy policy page and explicit contact information, which are areas for improvement. Security posture is moderate with HTTPS enabled but missing security headers and incident response contacts. Overall, the site is professional, trustworthy, and content-rich, serving its audience effectively.

F

Fórum dárců

darujspravne.cz

0

Darujspravne.cz is a leading charitable crowdfunding platform in the Czech Republic, operated by Fórum dárců, a reputable donor association established in 1997. The platform facilitates transparent and direct donations to verified non-profit organizations, ensuring funds reach intended recipients. It offers services such as individual donor registration, organizational verification, and matching funds in partnership with ČSOB bank. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content tailored to individual donors and non-profits. Technically, it employs modern web technologies including the Nette PHP framework, UIkit CSS, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Security posture is strong with HTTPS enforced and secure forms, though it lacks some advanced security headers and a published security policy. Privacy compliance is well addressed with visible cookie consent and privacy terms. WHOIS data is unavailable, which slightly impacts trust but the strong brand presence and partner ecosystem mitigate concerns. Overall, the site is trustworthy, well-maintained, and serves an essential role in the Czech non-profit sector.

F

Fórum dárců

donorsforum.cz

0

Fórum dárců is a well-established Czech non-profit organization acting as a national forum for donors, foundations, and charitable activities. The website provides extensive information about its members, projects, events, and related portals, positioning itself as a key player in the Czech charitable sector. Technically, the site uses modern web technologies including HTTPS, jQuery, FontAwesome, and Google Analytics, ensuring a functional and responsive user experience. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency and legitimacy verification. Security posture is generally good with HTTPS and no visible vulnerabilities, but the lack of security headers and explicit privacy/cookie policies indicates room for improvement. Overall, the site is professional, content-rich, and trustworthy from a business perspective, but would benefit from enhanced privacy compliance and domain registration transparency.

UNICEF Iceland operates as a national branch of the global UNICEF organization, focusing on children's rights and welfare advocacy within Iceland and internationally. The website presents a professional and consistent brand image aligned with UNICEF's global identity, targeting the general public interested in child welfare. Technically, the site is built using modern frameworks such as React and Gatsby, ensuring a good user experience and mobile optimization. However, the absence of WHOIS data for the domain www.unicef.is raises concerns about domain registration transparency, which impacts trustworthiness. Security posture is moderate with no evident security headers or policies, and privacy compliance is low due to missing privacy and cookie policies. Overall, the site is safe, accessible, and informative but would benefit from improved transparency and security practices.

S

Slysavarnafélagið Landsbjörg

landsbjorg.is

0

Slysavarnafélagið Landsbjörg is a prominent Icelandic non-profit organization dedicated to rescue operations, safety education, and community support. The organization operates nationally with a strong volunteer base and is supported through donations, sponsorships, and an integrated e-commerce platform offering branded safety products. The website reflects a professional and well-structured digital presence, targeting Icelandic residents, volunteers, and donors. It effectively communicates its mission and services with clear navigation and rich content. Technically, the site leverages modern frameworks such as Next.js and integrates Shopify for online sales, ensuring a responsive and performant user experience. Security measures are robust, including HTTPS enforcement and security headers, though the absence of a public security policy and incident response page suggests room for improvement. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site presents a trustworthy and credible front for the organization, though WHOIS data is unavailable, likely due to privacy protections common in Icelandic domains.

F

Fondation Donorinfo

donorinfo.be

0

Fondation Donorinfo is a Belgian public utility foundation dedicated to promoting transparency and trust in charitable giving. The website serves as an independent guide for donors to find and evaluate organizations, providing detailed financial and operational information. It targets donors and charitable organizations within Belgium, emphasizing transparency and generosity. The site is built on Drupal 10, leveraging modern web technologies and privacy-respecting analytics (Matomo). The user experience is professional, accessible, and mobile-optimized, with clear navigation and relevant content in French. Privacy and cookie policies are well implemented, reflecting GDPR compliance. However, direct contact information such as emails or phone numbers is not publicly listed, relying on contact forms instead. The WHOIS data for the domain is restricted and unavailable, which is typical for .be domains but reduces transparency in domain ownership verification. Overall, the website demonstrates a strong security posture with HTTPS and privacy measures but lacks explicit security policies or vulnerability disclosure mechanisms.

R

RE-EF asbl/vzw

vef-aerf.be

0

RE-EF asbl/vzw is a Belgian non-profit association dedicated to promoting ethical fundraising practices among organizations relying on public generosity. Founded in 1996, it provides a code of ethics, internal regulations, and a certification label to its members, positioning itself as a trusted authority in the ethical fundraising sector in Belgium. The website serves as an information hub for members, donors, and the general public, offering news, guidelines, and contact channels. Technically, the site employs a modern JavaScript stack including jQuery, Modernizr, bxSlider, and Featherlight, with Google reCAPTCHA v3 and Google Analytics integrated for security and analytics purposes. The site is hosted via Combell nv, a reputable Belgian registrar and hosting provider. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though explicit security headers and incident response policies are not publicly documented. Privacy compliance is well addressed with a cookie consent banner and a privacy policy in place. Overall, the site is professional, trustworthy, and well-structured, serving its niche audience effectively.

N

Nedoklubko

nedoklubko.cz

0

Nedoklubko is a well-established Czech non-profit organization dedicated to supporting families of prematurely born children and neonatal departments across the Czech Republic. Founded in 2002, it operates primarily through donations, partnerships, and community engagement. The website serves as a comprehensive resource offering information, support, events, and publications targeted at affected families and healthcare professionals. The organization maintains a strong digital presence with active social media channels and regularly updated content, including blogs and podcasts. Technically, the website is built on WordPress using a modern and reputable technology stack including plugins for events, e-commerce, and social media integration. It employs Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile-optimized with good SEO and accessibility features, although some accessibility aspects could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers are not fully detected, and some plugins (e.g., jQuery Migrate) may require updates to mitigate potential vulnerabilities. No exposed sensitive data or obvious security flaws were found in the HTML content. The absence of WHOIS data limits domain trust assessment, but the website's content and structure indicate legitimacy. Overall, Nedoklubko presents a professional, trustworthy, and user-friendly platform for its niche audience. Strategic improvements in security headers, plugin updates, and enhanced contact information visibility would further strengthen its security posture and user trust.

Č

Česká rada dětí a mládeže

crdm.cz

0

Česká rada dětí a mládeže (ČRDM) is a well-established Czech non-profit organization founded in 1998, serving as an umbrella for 100 member organizations representing approximately 250,000 individual members. The organization focuses on supporting extracurricular education and activities for children and youth, advocating for their interests at national and international levels. Their website reflects a professional presence with multiple projects, advisory services, and publications such as the Archa magazine. Technically, the site is built on WordPress with legacy jQuery and uses Google Analytics for tracking, but lacks modern security headers and explicit privacy or cookie policies, indicating room for compliance improvement. Contact information is clearly provided, enhancing trust and accessibility.

F

Fórum dárců | Czech Donors Forum

darcovskasms.cz

0

The website www.darcovskasms.cz operates as a charitable SMS donation platform managed by the Czech Donors Forum, a non-profit organization. It facilitates one-time and recurring donations via SMS to various social and humanitarian projects in the Czech Republic. The platform is supported by major Czech mobile operators and government entities, indicating a strong market position within the charitable sector. The site provides clear information on donation methods, project categories, and partner organizations, targeting the general public interested in supporting non-profit causes. Technically, the website employs common JavaScript libraries such as jQuery and Slick Carousel, uses HTTPS, and implements a cookie consent mechanism compliant with GDPR principles. The site is mobile-optimized with good navigation and SEO practices. However, it lacks explicit privacy policy and terms of service pages, and no advanced security headers were detected, which are areas for improvement. From a security perspective, the site shows a moderate security posture with HTTPS enabled and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain reduces trustworthiness and raises concerns about domain registration legitimacy. No incident response or vulnerability disclosure information is provided, which could be enhanced to improve security transparency. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, verifying domain registration details, and establishing a vulnerability disclosure process to strengthen security and compliance posture.

U

UNICEF

unicef.org

0

UNICEF is a globally recognized non-profit organization dedicated to protecting the rights and welfare of children worldwide. The website serves as a comprehensive platform to communicate UNICEF's mission, campaigns, research, and ways to get involved. It targets a broad international audience including donors, partners, and the general public interested in child welfare. The site is well-branded, professionally designed, and provides extensive content aligned with UNICEF's global mandate. Technically, the website is built on Drupal CMS and integrates multiple modern analytics and marketing tools such as Google Tag Manager, Hotjar, and LinkedIn Insight. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting a strong privacy posture. However, explicit security headers are not detected, and there is no visible security.txt file for vulnerability disclosure. No vulnerabilities or exposed sensitive data were found, indicating a mature security posture suitable for a high-profile non-profit. Overall, the website is trustworthy, professional, and compliant with privacy regulations such as GDPR. The absence of WHOIS data is likely due to privacy protection and does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing dedicated security contact information to further strengthen trust and security readiness.

J

J&J Foundation

jnjfoundation.com

0

The J&J Foundation website represents a philanthropic entity likely affiliated with Johnson & Johnson, focusing on community and social initiatives. The site targets a general audience including potential donors and community partners. The business model is non-profit, with key services centered on charitable programs. The website uses modern web technologies including Google Analytics, Microsoft Clarity, and a CMS platform likely Brightspot. It is mobile optimized and uses HTTPS for secure communications. However, the absence of WHOIS registration data and lack of visible privacy policies or contact information reduce trustworthiness. Security posture is moderate with standard tracking and cookie consent mechanisms but lacks explicit security headers and incident response information. Overall, the site is functional but could improve transparency and compliance documentation.

E

EYFDM

eyfdm.eu

0

EYFDM is a European non-profit organization dedicated to promoting youth engagement and democracy through exchanges, events, advocacy, and collaborations. The website serves as a hub for community involvement, offering bursaries, awards, and organizing conferences and forums. The target audience includes youth activists, policy makers, and non-profit stakeholders interested in democratic participation. Technically, the site is built on WordPress with Jetpack integration, embedding Google Calendar and using modern web fonts, reflecting a moderate to good digital maturity. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks some advanced security headers and explicit incident response information. Privacy compliance is partially met with a comprehensive privacy policy but missing cookie consent mechanisms. Overall, the site is professional and trustworthy with room for improvement in security and compliance transparency.

S

Takk

styrkja.is

0

The website www.styrkja.is serves as a donation platform focused on supporting a wide range of charitable and social causes within Iceland. It aggregates multiple non-profit organizations, providing users with the ability to make monthly contributions to causes such as child welfare, health, environment, and human rights. The platform positions itself as a trusted intermediary facilitating philanthropy in the Icelandic market. Technically, the site is built using modern web technologies including the Gatsby React framework, and integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and CookieHub for cookie consent management. The website demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contacts. WHOIS data for the domain is not publicly available, which is typical for Icelandic domains, but the site content and external references support its legitimacy. Overall, the site is professionally designed and trustworthy, with room for improvement in security transparency and privacy policy publication.

Y

YouBeHero

youbehero.com

0

YouBeHero is a Greek non-profit platform established in 2017 that enables users to convert commissions from their online purchases into donations to charitable organizations without any additional cost. The platform targets socially conscious Greek consumers and supports 151 registered organizations. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Google Analytics and Tag Manager for tracking. The domain is registered with GoDaddy and uses Cloudflare DNS services, ensuring reliable hosting and DNS management. Security posture is solid with HTTPS enforced and CSRF protections, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-optimized for mobile and SEO. No critical security or content safety issues were detected.

Açık Açık Derneği operates as a non-profit platform in Turkey dedicated to promoting transparency, open communication, and accountability primarily within civil society organizations and social enterprises. The website serves as a hub to connect donors with transparent and accountable NGOs and social initiatives, emphasizing ethical standards and donor rights. The platform is positioned as a trusted intermediary in the Turkish non-profit sector, with a focus on social impact and public resource accountability. Technically, the website employs modern web technologies including JavaScript, Cloudflare DNS services, and Google reCAPTCHA for bot mitigation. While the site is mobile-optimized and presents a professional design, it lacks advanced security headers and DNSSEC, which are recommended for enhanced security. The absence of a privacy policy and terms of service pages indicates room for improvement in compliance and transparency. From a security perspective, the site benefits from HTTPS and bot protection but misses key security best practices such as DNSSEC and security headers. No critical vulnerabilities or blocking mechanisms were detected, suggesting a moderate security posture. However, the lack of published security policies and incident response contacts limits the site's readiness for security incidents. Overall, the website is legitimate, well-aligned with its stated mission, and technically sound for its scale. Strategic improvements in privacy compliance, security hardening, and contact transparency would enhance trust and resilience.

C

COCEMFE

cocemfe.es

0

COCEMFE is a well-established Spanish non-profit organization founded in 1980, dedicated to the inclusion and active participation of people with physical and organic disabilities. The website reflects a mature digital presence with comprehensive content covering employment, training, accessibility, education, legal advisory, accessible tourism, volunteering, and international cooperation. The organization maintains a strong market position nationally, representing millions of people and hundreds of associations. Technically, the site is built on WordPress with modern plugins and demonstrates good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and detailed privacy policies could be enhanced. The absence of WHOIS data limits domain trust verification, but the website's professional design, clear contact information, and public funding references support its legitimacy. Overall, COCEMFE's digital presence is professional, trustworthy, and aligned with its mission.

D

DONOR, z.s.

donor.cz

0

DONOR, z.s. is a Czech non-profit organization dedicated to supporting children after bone marrow transplantation and chronically ill children and their families. The website provides detailed event information, educational resources, and community engagement opportunities. The organization targets families and healthcare communities, positioning itself as a specialized support entity in the pediatric transplant space. Technically, the website is built on WordPress with common plugins and integrates Google services for analytics and maps. The site is mobile-optimized and professionally designed, offering a good user experience. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks explicit security headers and formal policies. WHOIS data is unavailable, which raises some concerns about domain legitimacy, though the website content and structure support trustworthiness. Privacy compliance is partial, with cookie consent present but no clear privacy policy page. Overall, the site is functional and credible but would benefit from enhanced transparency and security documentation.

N

Nadace Národ dětem

naroddetem.cz

0

Nadace Národ dětem is a Czech non-profit foundation dedicated to providing humanitarian aid to children hospitalized at the Clinic of Pediatric Hematology and Oncology at the Faculty Hospital in Prague Motol. The website serves as an informational and donation platform targeting donors, healthcare professionals, and the general public interested in supporting pediatric oncology care. The foundation emphasizes transparency by providing bank account details and contact information. Technically, the site is built on WordPress with legacy JavaScript libraries and uses Google Analytics for visitor tracking. While the site is functional and professionally designed, it lacks modern security headers and updated libraries, which could expose it to vulnerabilities. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. Overall, the site is trustworthy in content but requires technical and compliance improvements to enhance security and privacy posture.

N

Nadační fond Dům Ronalda McDonalda

drmcd.cz

0

Nadační fond Dům Ronalda McDonalda is a Czech non-profit organization dedicated to supporting families of children with serious long-term illnesses by providing free accommodation near hospitals. The organization operates the first Ronald McDonald House in Motol and is actively fundraising for a second house in Olomouc. The website reflects a professional and well-established charity with a clear mission and strong community engagement. Technically, the site is built on modern frameworks such as Next.js and Sanity CMS, hosted by Active24, and optimized for performance and mobile devices. Security posture is strong with HTTPS, security headers, and secure donation processing via a trusted third-party platform. Privacy compliance is evident with a comprehensive privacy policy and cookie consent mechanisms. Overall, the site demonstrates high trustworthiness and professionalism, with active social media presence and transparent business information.

H

HAIMA CZ, z.s.

haima.cz

0

HAIMA CZ, z.s. is a well-established Czech non-profit organization dedicated to supporting children with hematological and oncological diseases, primarily those treated at the Clinic of Pediatric Hematology and Oncology at FN Motol. Founded in 1991, it operates through volunteer groups across several Czech cities and provides a broad range of services including family support, medical equipment provision, psychological assistance, and organizing rehabilitation stays. The organization maintains strong partnerships with reputable institutions and runs public fundraising campaigns to sustain its activities. Technically, the website is built on WordPress 6.5 with a modern but moderate tech stack including jQuery and YouTube embed plugins. The site is mobile-optimized with good navigation and content quality, though some SEO and accessibility features could be improved. HTTPS is enforced, but security headers are missing, and no cookie consent mechanism is present, indicating room for improvement in privacy compliance. From a security perspective, the site shows good basic practices such as secure forms with privacy consent and no exposed sensitive data. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which slightly impacts trustworthiness. No critical vulnerabilities or malware indicators were found. Overall, the site is safe and trustworthy for its intended audience. Strategically, HAIMA CZ should focus on enhancing its privacy and security posture by implementing cookie consent, security headers, and publishing incident response policies. Verifying and updating domain registration information would also strengthen trust. These steps will help maintain compliance with GDPR and improve donor and user confidence.

N

Nadační fond Pink Bubble

pinkbubble.cz

0

Pink Bubble is a Czech non-profit foundation dedicated to supporting young people affected by cancer. The organization focuses on fulfilling personal wishes, organizing therapeutic and recreational stays, providing medical and rehabilitation aids, and supporting education and reintegration into normal life. The website reflects a well-established charity with a strong community presence, supported by partnerships with notable organizations such as Nadace ČEZ and RunCzech. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and Hotjar, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. Overall, the domain registration data aligns well with the organization's profile, indicating legitimacy and trustworthiness.

L

Liga proti rakovině Praha z.s.

cdpr.cz

0

The website www.cdpr.cz represents the official platform for the Český den proti rakovině (Czech Day Against Cancer), a well-established non-profit fundraising and awareness campaign organized by Liga proti rakovině Praha z.s. The organization focuses on reducing cancer mortality in the Czech Republic through annual fundraising events, volunteer engagement, and public health campaigns. The site targets the general public, donors, volunteers, and corporate partners, providing information, donation options, and event participation details. Technically, the website is built on WordPress 6.8.3, utilizing common libraries such as jQuery, Bootstrap 3.3.7, Owl Carousel, and a GDPR cookie compliance plugin. The site is mobile-optimized with good SEO practices and moderate performance. It employs HTTPS with a good SSL configuration and includes a cookie consent mechanism aligned with GDPR requirements. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and no visible exposure of sensitive data. However, it lacks advanced security headers and a public vulnerability disclosure policy. The absence of WHOIS data limits domain trust verification, though the website content and partner affiliations suggest legitimacy. Overall, the site is a professional, trustworthy platform for a non-profit cause with strong content quality and privacy compliance. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and security posture.

Č

Český zahrádkářský svaz, z.s.

zahradkari.cz

0

Český zahrádkářský svaz, z.s. is a well-established Czech non-profit organization serving gardening enthusiasts with a broad range of services including information dissemination, event organization, and publication of a popular gardening magazine. The organization targets gardening hobbyists, families, and youth, maintaining a strong community presence and offering member benefits. The website reflects a medium-sized entity with consistent branding and a clear mission. Technically, the site uses standard web technologies with Bootstrap for responsive design, hosted by Wedos, a Czech hosting provider. The site is moderately optimized for performance and mobile use but lacks advanced CMS or analytics integrations. Security posture is basic with cookie consent implemented but missing advanced security headers and policies. WHOIS data confirms domain legitimacy with a long registration history consistent with the organization's claims. Overall, the site is trustworthy and professionally maintained but could improve in security and privacy compliance.

S

Spolek pro obnovu Katzelsdorfského zámečku, z. s.

katzelsdorfsky-zamecek.cz

0

The website represents a small non-profit organization dedicated to the restoration of Katzelsdorfský zámeček, a cultural heritage site in the Czech Republic. The organization provides information and community engagement related to this restoration effort. The site is built on the Webnode CMS platform and uses standard web technologies including HTTPS, Google Analytics, and Facebook SDK for social media integration. The technical infrastructure is moderate with CDN hosting and basic mobile optimization. Security posture is adequate with HTTPS enabled and IP anonymization in analytics, but lacks important security headers and privacy policies, indicating room for improvement in compliance and security best practices. Overall, the website is functional and trustworthy for its niche audience but would benefit from enhanced privacy and security measures.

No Foot No Stress is a Czech non-profit association established in 2012, dedicated to supporting amputees by providing information, community, and organizing events such as charity balls and runs. The website reflects a well-established organization with a clear mission and active engagement in community events. Technically, the site is built on WordPress with a modern block editor, hosted likely by Active24, and shows good mobile optimization and user experience. Security posture is moderate with HTTPS enabled but lacking advanced security headers and formal privacy or cookie policies, indicating room for compliance improvements. Overall, the site is trustworthy and professional but should enhance privacy and security practices to align with GDPR and modern standards.