Security Directory

D

Děti patří domů, z. s.

detipatridomu.cz

0

Děti patří domů, z. s. is a Czech non-profit organization dedicated to reducing the number of children in institutional care by promoting adoption, foster care, and family-based solutions. The website serves as an information hub for prospective adopters, foster parents, clients, and professionals, offering educational courses, volunteer programs, and client support. The organization maintains an active online presence with regular updates, events, and donation options, positioning itself as a trusted advocate in child welfare within the Czech Republic. Technically, the website is built on WordPress using the Avada theme, integrating WooCommerce for e-commerce functionality and various modern JavaScript libraries such as jQuery and Flatpickr. The site employs HTTPS with a strong SSL configuration and uses Google reCAPTCHA to secure forms. Cookie consent mechanisms and privacy policies indicate GDPR compliance, although some security headers could be improved. Security posture is solid with HTTPS enforcement and anti-bot measures, but lacks advanced security headers and a formal vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust assessment, but the professional site content and transparency in contact information support legitimacy. Overall, the website is well-designed, user-friendly, and serves its mission effectively. Strategic recommendations include enhancing security headers, adding a security.txt file, and improving accessibility features to further strengthen compliance and trust.

E

EUROTOPIA.CZ, o.p.s.

eurotopia.cz

0

EUROTOPIA.CZ, o.p.s. is a Czech non-profit organization dedicated to providing social services, supporting foster families, and engaging in community and cultural programs. The organization targets families, children, youth, and adults requiring social support, offering counseling, therapy, and educational programs. The website reflects a medium-sized organization founded recently in 2023, with a clear mission and multiple active social media channels. The business model is focused on non-profit social service delivery with strong community engagement. Technically, the website is built on WordPress using modern plugins such as Elementor and Modern Events Calendar Lite, supported by jQuery and Google Fonts. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. Hosting is likely local to the Czech Republic, consistent with the domain registrar information. From a security perspective, the site uses HTTPS and Google reCAPTCHA for form protection, and implements a cookie consent banner compliant with GDPR. However, explicit security headers are not clearly present, and no incident response or vulnerability disclosure mechanisms are found. The site shows good privacy compliance but could improve security posture by adding security headers and a security.txt file. Overall, the website is professional, trustworthy, and safe for general audiences. The domain registration data aligns well with the organization's founding date and business claims, indicating legitimacy. Strategic recommendations include enhancing security headers, adding incident response information, and improving accessibility compliance to strengthen trust and security posture.

M

Maltézská pomoc, o. p. s.

maltezskapomoc.cz

0

Maltézská pomoc, o. p. s., is a well-established Czech non-profit organization founded in 2002, dedicated to providing social services and volunteer programs to children, families, people with disabilities, and seniors in need. The organization operates across multiple cities in the Czech Republic, offering personal assistance, support for caregivers, and other charitable projects. Their website reflects a professional and consistent brand presence with clear communication of their mission and services. Technically, the site is built on WordPress using the Colibri Page Builder Pro, hosted behind Cloudflare DNS, and demonstrates good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers and policies are missing. Overall, the site is trustworthy, compliant with GDPR, and provides sufficient contact and social media information to engage stakeholders.

I

Inštitút pre zodpovedné hranie

hrajzodpovedne.sk

0

The website 'Hraj zodpovedne' is a Slovak non-profit initiative under the Inštitút pre zodpovedné hranie, aimed at promoting responsible gambling practices and providing support to affected individuals and their families. The project is supported by major market players and focuses on education, awareness campaigns, and research to foster a safer gambling environment in Slovakia. The site features professional design, clear navigation, and multimedia content including videos and articles to engage its audience. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery, Swiper.js, and PhotoSwipe for interactive elements. It uses Cookiebot for cookie consent management and Google Tag Manager for analytics, indicating a mature digital infrastructure. Hosting is provided by Websupport, and the site employs HTTPS with DNSSEC enabled, ensuring strong baseline security. From a security perspective, the site demonstrates good practices including encrypted connections and cookie consent mechanisms. However, it lacks explicit security policies, incident response contacts, and security.txt files, which are recommended for enhanced transparency and vulnerability management. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a trustworthy, well-maintained platform with a clear social mission. Strategic recommendations include implementing additional security headers, publishing formal security and incident response policies, and maintaining regular audits of third-party scripts to further strengthen security posture.

G

GTO Solutions s.r.o.

asociaceher.cz

0

The website 'AsociaceHer.cz' represents a Czech non-profit association focused on advocating for poker and sports betting players. It provides education, communicates with public authorities, and promotes responsible gambling. The organization behind the site is legally identified as GTO Solutions s.r.o. The site targets Czech players and stakeholders in the gambling sector, positioning itself as a niche advocacy group with a clear mission and relevant content. Technically, the site uses modern web technologies including Google Tag Manager and Google Analytics, with HTTPS enforced and a moderate performance profile. Security posture is adequate but could be improved by adding security headers and explicit incident response information. Privacy and cookie policies are present and appear GDPR compliant. The absence of WHOIS data is a concern for domain legitimacy verification, but the website content and business information support a credible presence. Overall, the site is professional, trustworthy, and serves its target audience effectively.

I

Institut pro regulaci hazardních her z.s.

zodpovednehrani.cz

0

The website www.zodpovednehrani.cz represents the Institut pro regulaci hazardních her z.s., a Czech non-profit organization dedicated to promoting responsible gambling through education, support services, and regulatory advocacy. The site offers resources such as a 24/7 helpline, information on gaming limits, exclusion registries, and educational videos and podcasts targeting gambling players, their families, and legal operators. The organization positions itself as a key national resource in the Czech Republic for gambling-related social support and prevention. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, and responsive design elements to ensure accessibility and user engagement. The site is well-structured with clear navigation and a professional design, optimized for mobile devices. Privacy compliance is robust, featuring a comprehensive privacy policy and a cookie consent mechanism aligned with GDPR requirements. From a security perspective, the site enforces HTTPS and implements cookie consent but lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the HTML content. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness, warranting further investigation. Overall, the website demonstrates a solid commitment to content quality, privacy, and user support, but improvements in domain transparency and security header implementation would strengthen its security posture and trust profile.

N

Nadační fond Magdaleny Kožené

zusopen.cz

0

ZUŠ OPEN is a prominent cultural event organized by the Nadační fond Magdaleny Kožené, focusing on celebrating and sharing the joy of art across the Czech Republic. The website serves as an information hub for the event, providing program details, news, galleries, and support for participating schools. The target audience includes the general public, families, and educational institutions interested in music, dance, theater, and visual arts. The organization holds a strong market position as a leading non-profit cultural event in the region. Technically, the website employs modern web technologies including Google Analytics for traffic analysis and a cookie consent management system by VIZUS. The site is built on the VIZUS CMS platform and features responsive design with good mobile optimization. Performance is moderate with room for improvement in SEO and accessibility features. From a security perspective, the site uses HTTPS and implements a cookie consent banner with granular user controls, indicating awareness of privacy compliance. However, the absence of visible security headers and lack of a published privacy policy or terms of service pages represent areas for enhancement. No WHOIS data is available, which limits domain registration trust verification but the website content and branding appear professional and consistent with a reputable non-profit organization. Overall, the website is well-designed and functional, with good content quality and user experience. Strategic improvements in privacy documentation, security headers, and domain registration transparency would strengthen trust and compliance posture.

D

DeoLink

deolink.org

0

DeoLink is a well-established Christian ministry organization with over 50 years of evangelism experience, focusing on empowering ministries worldwide through digital evangelism tools and consultation services. The website presents a professional and consistent brand image targeting faith-based organizations and ministries. Technically, the site is built on WordPress with modern analytics and marketing tools integrated, including Matomo, Google Tag Manager, and Facebook Pixel, all managed with a consent mechanism. The hosting is provided by OVH sas, a reputable registrar, with domain registration consistent with the organization's claims, although the domain itself is newly created in 2023. Security posture is generally good with HTTPS enforced and domain transfer protections in place, but DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is basic, with cookie consent implemented but no visible privacy or terms of service pages. Overall, the site is trustworthy and professional but could improve transparency and security documentation.

N

Nadační fond Kapka naděje

kapkanadeje.cz

0

Nadační fond Kapka naděje is a well-established Czech non-profit organization dedicated to supporting pediatric patients with blood disorders, cancer, and those requiring bone marrow transplants. Founded in 2000, the foundation focuses on improving hospital equipment, enhancing the psychological well-being of children and their families, and supporting scientific research projects. The website reflects a professional and consistent brand image, targeting donors, healthcare partners, and the general public interested in charitable giving. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, and reCAPTCHA, ensuring a secure and user-friendly experience. Privacy and cookie policies are clearly presented with consent mechanisms, demonstrating GDPR compliance. However, WHOIS data is unavailable due to privacy protection, which is common for non-profits but reduces transparency. Overall, the site maintains a strong security posture with HTTPS and security headers, though it lacks explicit security or incident response policies. Strategic recommendations include publishing a vulnerability disclosure policy, enhancing accessibility, and providing clearer contact information for data protection officers or security incidents.

Z

Zabydlení

zabydleni.org

0

Zabydleni.org is a Czech non-profit initiative dedicated to addressing the housing crisis and supporting vulnerable populations through legislative advocacy. The website serves as an information and engagement platform, promoting a housing support law and providing updates on related activities. Technically, the site is built on the Webflow platform, leveraging modern web technologies including jQuery and Google Analytics for tracking. The site is mobile-optimized and presents content clearly with good navigation. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is partial due to absence of a privacy policy and terms of service. Overall, the domain registration data aligns with the initiative's timeline and legitimacy, supporting trust in the website's authenticity.

J

JDI, z.s.

jdicz.eu

0

JDI, z.s. is a Czech non-profit association dedicated to advocating for deinstitutionalization and improved social services for disadvantaged individuals. The organization targets social service professionals, families, and the broader community interested in social inclusion and support. Their website reflects a well-maintained digital presence with clear messaging, active social media integration, and compliance with GDPR and cookie regulations. Technically, the site is built on WordPress with a variety of plugins enhancing user experience and content management. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are absent. Overall, the website is trustworthy and professional, supporting the organization's mission effectively.

Asociace Dítě a Rodina is a leading non-profit association in the Czech Republic dedicated to the care and advocacy for endangered children. With approximately 90 member organizations, it plays a significant role in promoting family-based care and supporting substitute family arrangements when necessary. The website reflects a mature digital presence with rich content including research, news, and media information relevant to child welfare professionals and stakeholders. Technically, the site is built on WordPress with Elementor and integrates Google Analytics for visitor insights. Security posture is generally good with HTTPS enforced and tracking opt-out mechanisms, though improvements in security headers and formal privacy policies are recommended. Overall, the domain registration and website content are consistent and trustworthy, supporting the organization's legitimacy and market position.

A

AVPO ČR

avpo.cz

0

AVPO ČR is a Czech non-profit association dedicated to supporting public benefit organizations through education, consultancy, and promoting transparency and trustworthiness in the sector. The website reflects a medium-sized organization with a clear focus on the Czech market, providing key services such as the 'Značka spolehlivosti' (Reliability Mark), advocacy, and member benefits. The digital infrastructure is based on WordPress with modern plugins and tracking tools, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment but the website content and partner references support legitimacy. Overall, the site is professional, well-structured, and compliant with GDPR requirements.

V

Virtuální knihovna - NRP

knihovnanrp.cz

0

The Virtuální knihovna Náhradní rodinné péče (Virtual Library for Substitute Family Care) is a Czech non-profit digital platform serving as a repository for electronic publications, research articles, conference papers, and methodologies related to substitute family care. It targets professionals, researchers, prospective substitute parents, and the general public interested in family care systems. The website is operated under the auspices of Nadace J&T, a Czech foundation, and provides valuable resources and campaign materials to support substitute family care initiatives. Technically, the site is built on WordPress with common plugins for SEO, cookie management, and content display, and it uses Google Analytics for visitor tracking with GDPR-compliant cookie consent.

H

Hledáme rodiče, o. p. s.

hledamerodice.cz

0

Hledáme rodiče, o. p. s. is a Czech non-profit organization dedicated to supporting and promoting foster care by providing information, training, and counseling services to prospective foster parents and the general public. The organization maintains a professional and informative website that serves as a resource hub for foster care-related topics, including preparation courses, legal information, and personal stories. Their market position is that of a recognized advocate and facilitator within the Czech foster care ecosystem, supported by partnerships with various organizations and active social media engagement. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery, Slick Carousel, and Splide.js for interactive features. SEO is enhanced through the Yoast SEO plugin, and privacy compliance is addressed via a cookie consent mechanism powered by CookieYes. The site is mobile-optimized and uses HTTPS, ensuring secure communication. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent management. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data limits domain trust verification, but the presence of clear contact information, physical address, and active social media accounts supports legitimacy. Overall, the site presents a low-risk profile with room for improvement in security headers and transparency regarding security policies. Strategically, the organization should focus on enhancing security headers, publishing a security policy and incident response contacts, and possibly adding a vulnerability disclosure mechanism to strengthen trust. Continued content quality and partnership development will support their mission and audience engagement.

N

Nadace J&T

8000duvodu.cz

0

8000důvodů is a Czech non-profit initiative run by Nadace J&T, focused on reducing the number of children in institutional care and promoting systemic reforms in child welfare. The website provides detailed information about their mission, goals, and cooperation with regional authorities to improve social services and foster family-based care. The initiative is well-positioned within the Czech social care sector, leveraging partnerships and expert analyses to drive change. Technically, the website is built on Webflow CMS, utilizing modern web technologies including jQuery, Google Analytics, and Typekit fonts. It features responsive design, embedded video content, and a cookie consent mechanism compliant with GDPR principles. The site demonstrates good SEO and accessibility basics but lacks some advanced security headers and explicit privacy policies. From a security perspective, the site uses HTTPS and implements cookie consent but does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the business timeline. Overall, the site presents a secure and trustworthy digital presence for a small non-profit organization. Strategically, the site could improve by adding comprehensive privacy and security policies, enhancing accessibility, and implementing security headers to strengthen its security posture and compliance. These improvements would increase user trust and regulatory adherence.

P

Prověřená veřejně prospěšná organizace

znackaspolehlivosti.cz

0

The website 'Značka spolehlivosti' represents a Czech non-profit organization focused on verifying and awarding quality marks to other non-profit entities. It operates a niche certification service, including competitions such as the 'Zlatý banán'. The site is built on WordPress using the Divi theme and incorporates SEO best practices via the Yoast SEO plugin. The technical infrastructure is moderate in performance and mobile optimization, with basic accessibility features. Security posture is average, lacking explicit security headers and detailed privacy policies. No WHOIS data is available, limiting domain trust assessment. Overall, the site appears legitimate but would benefit from enhanced transparency and security measures.

N

Nadační fond pomoci Karla Janečka

nfpomoci.cz

0

Nadační fond pomoci Karla Janečka is a Czech non-profit organization dedicated to helping individuals facing difficult life situations and supporting public charitable projects. The foundation operates a crowdfunding platform called Znesnáze, which facilitates easy and secure fundraising. With over 12 years of experience, the organization positions itself as a trusted and pioneering entity in the Czech charitable sector. The website provides comprehensive information about their services, social counseling, and ongoing projects, targeting both beneficiaries and donors. Technically, the site is built on the solidpixels CMS platform, employs modern analytics and tracking tools such as Google Analytics and Facebook Pixel, and maintains good mobile responsiveness and SEO practices. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, though it lacks some advanced security headers and formal security policies. The absence of WHOIS data reduces domain trust slightly, but the overall digital presence and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding vulnerability disclosure policies to strengthen trust and compliance.

N

Nadace J&T

nadacejt.cz

0

Nadace J&T is a well-established Czech non-profit foundation founded in 2006, dedicated to supporting vulnerable families, hospice care, education, and social initiatives. The foundation operates with a clear mission to provide grants and assistance to individuals and organizations in need, maintaining a strong market position within the Czech non-profit sector. Their website reflects a professional and trustworthy image, supported by recognized trust certifications and active social media engagement. Technically, the website employs modern web technologies including Bootstrap, jQuery, Chart.js, and Google Fonts, hosted on Forpsi servers. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. Performance is moderate with no critical technical debt observed. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the foundation's identity. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic improvements in security headers and incident response documentation would enhance the security posture further.

N

Nadační fond pomoci

znesnaze21.cz

0

Znesnaze is a Czech Republic based non-profit crowdfunding platform established in 2014, operated by Nadační fond pomoci. It facilitates online fundraising campaigns to provide financial assistance to individuals and social projects in need. The platform emphasizes ease of use, transparency, and donor trust, with over half a million donors and thousands of campaigns supported. Technically, the website is built on the SolidPixels CMS, uses modern JavaScript libraries, and integrates Google Tag Manager and Analytics for tracking. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, supporting user consent mechanisms. However, WHOIS data is missing, which slightly impacts domain trustworthiness. Overall, the platform demonstrates a mature digital presence suitable for its non-profit mission.

S

Sri Swami Madhavananda World Peace Council

worldpeacecouncil.net

0

The Sri Swami Madhavananda World Peace Council is a non-profit organization dedicated to promoting global peace and unity through spiritual teachings and humanitarian projects. Their website serves as a platform to disseminate messages inspired by Mahatma Gandhi and Sri Swami Madhavananda, organizing events such as World Peace Summits and peace-related activities. The organization targets a general audience interested in peace, spirituality, and humanitarian causes. Technically, the website is built on Joomla CMS using the Yootheme template and UIkit framework, integrating social media platforms and Google Analytics for user engagement tracking. The site is mobile-optimized with good accessibility and SEO practices, although performance is moderate. Security posture is adequate with HTTPS enabled and CSRF tokens present, but lacks some security headers and explicit security policies. From a security and compliance perspective, the site lacks visible cookie consent mechanisms and detailed privacy compliance indicators. WHOIS data for the domain is missing, which raises concerns about domain legitimacy and registration transparency. No direct contact emails or phone numbers are provided, only a contact form. There is no evidence of vulnerability disclosure or incident response policies. Overall, the website is professional and trustworthy in content and design but would benefit from improved transparency in domain registration, enhanced security headers, and clearer privacy and cookie policies to strengthen user trust and compliance.

N

Nadační fond Modrý Hroch

bezurazu.cz

0

The website bezurazu.cz represents the Nadační fond Modrý Hroch, a Czech non-profit foundation dedicated to helping children after serious injuries and supporting injury prevention education. The site promotes educational puppet shows and prevention programs targeting children, parents, and educators. The foundation supports hospital departments and focuses on child safety. The website is well-structured, professionally designed, and mobile-optimized, providing clear navigation and relevant content in Czech. It uses modern web technologies including cPilot CMS, Google Analytics, and Google Tag Manager, with a service worker for enhanced performance. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policy or incident response information is provided. The domain registration data is consistent and trustworthy, with no privacy protection masking ownership, and the domain age aligns with the foundation's founding year. Overall, the site is safe, compliant with GDPR, and trustworthy, serving a clear non-profit educational mission.

N

Nadační fond Modrý hroch

modryhroch.cz

0

Nadační fond Modrý hroch is a Czech non-profit foundation established in 2005, dedicated to helping children who have suffered serious injuries or have severe physical handicaps. The foundation supports surgical and trauma departments in hospitals and focuses on the prevention of childhood injuries. Their business model relies on donations, volunteer engagement, and fundraising events, including an e-shop. The website is professionally designed, mobile-optimized, and provides clear navigation and calls to action for donations and volunteering. Technically, the site uses modern frameworks such as Uikit and is powered by the cPilot CMS, hosted by Active24. It integrates Google Analytics, Facebook Pixel, and Google Tag Manager for analytics and marketing purposes. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the domain registration data is consistent and supports the legitimacy of the organization.

Potravinová banka Praha a Středočeský kraj is a reputable non-profit organization dedicated to fighting food waste and providing food assistance to people in need within Prague and the Central Bohemian region. Founded in 2009 and affiliated with the Czech Federation of Food Banks, it is the largest food bank in the Czech Republic. The organization operates by collecting surplus food from donors, sorting and storing it, and distributing it to needy individuals and charitable organizations. The website reflects a medium-sized charity with a clear mission and active community engagement through volunteering and donations. Technically, the website is built on WordPress using the Elementor page builder and jQuery libraries. It is hosted by a Czech hosting provider and demonstrates good mobile optimization and SEO practices. However, there is room for improvement in accessibility and performance optimization. The site lacks explicit privacy and cookie policies, which are important for GDPR compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, no security headers were detected, and there is no visible incident response or vulnerability disclosure information. Contact forms are present but should be reviewed for secure handling and spam protection. Overall, the website is trustworthy and professional, serving its target audience effectively. Strategic improvements in privacy compliance, security headers, and transparency would enhance its security posture and regulatory adherence.

H

HledamBoha.cz, z.s.

hledamboha.cz

0

HledamBoha.cz is a Czech Christian non-profit organization established in 2010, dedicated to providing free online courses, videos, and personal guidance on spiritual and life questions. The website serves a niche audience interested in Christian faith and personal development, offering a variety of educational and inspirational content. The organization maintains a consistent brand presence and leverages social media platforms such as Facebook, Instagram, and YouTube to extend its reach. Technically, the website employs modern analytics and tracking tools including Matomo, Google Tag Manager, Facebook Pixel, and Hotjar, with a focus on user consent and privacy compliance. Hosting is managed via AWS DNS services, and the site is optimized for mobile devices with good SEO practices.

B

Bloomerang Fundraising

qgiv.com

0

Bloomerang Fundraising, formerly known as Qgiv, is a specialized SaaS platform designed to empower nonprofit organizations with comprehensive fundraising tools. The platform offers a wide range of services including donation forms, event management, peer-to-peer fundraising, text-to-donate, auctions, donor management CRM, and detailed data reporting. Positioned as a trusted and established player in the nonprofit fundraising sector, Bloomerang Fundraising leverages its rebranding to strengthen market presence and expand its service offerings. Technically, the website employs a mature digital infrastructure with multiple analytics and marketing technologies such as Google Analytics, HubSpot, Microsoft Clarity, Facebook Pixel, and Marketo. The site is well-optimized for mobile devices, features a professional design, and demonstrates good SEO and accessibility practices. However, there is room for improvement in security headers and explicit cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site enforces HTTPS and uses reputable third-party scripts, indicating a solid baseline security posture. The absence of visible security headers and lack of a published vulnerability disclosure or incident response contact are areas for enhancement. The WHOIS data is unavailable, which slightly reduces trustworthiness but does not detract significantly from the overall credibility given the professional presentation and trust signals. Overall, Bloomerang Fundraising presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in privacy compliance and security transparency would further solidify its position and trustworthiness in the nonprofit fundraising market.

C

Člověk a víra | Člověk a Víra

czlowiekiwiara.pl

0

Člověk a Víra is a Czech-based non-profit website dedicated to religious and cultural content, including photography galleries, exhibitions, and faith-related events. The site targets a general audience interested in religious communities and cultural heritage, offering multilingual support through partner sites in English, Slovak, French, and Polish. The business model appears to be informational and cultural promotion without direct commercial activities. Technically, the website is built on Drupal 10 CMS, uses Google Tag Manager for analytics, and employs Google Fonts for typography. The site is mobile-optimized and accessible, with a clear navigation structure and cookie consent mechanisms in place. Security-wise, the site uses HTTPS and cookie consent but lacks advanced security headers and incident response information. No privacy policy or terms of service were found, which is a compliance gap. The domain registration is consistent with the website's regional focus and is relatively new but appropriate for the business age. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

Č

Člověk a Víra

manandthefaith.com

0

The website 'Člověk a Víra' is a non-profit religious and cultural media platform primarily targeting Czech-speaking audiences with multilingual support including English, Slovak, French, and Polish. It offers photography services, galleries, exhibitions, and media content related to faith and spirituality. The domain is well-established since 2014 and is registered with a Czech registrar, consistent with the website's regional focus. Technically, the site is built on Drupal 10, uses modern web fonts, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized and provides a cookie consent mechanism compliant with GDPR requirements. However, it lacks a publicly accessible privacy policy and terms of service, which are critical for compliance and user trust. Contact information is limited to a web form without direct emails or phone numbers visible in the content.

B

Bloomerang

bloomerang.com

0

Bloomerang is a well-established company founded in 2002, specializing in nonprofit fundraising software and CRM solutions. Their platform offers a comprehensive suite of tools including online giving, peer-to-peer campaigns, auctions, and volunteer management, targeting nonprofit organizations and fundraisers. The company maintains a strong market position with a professional and user-friendly website that reflects their expertise and commitment to the nonprofit sector. Technically, the website is built on WordPress and leverages modern technologies such as Bootstrap, jQuery, and various marketing and analytics tools, ensuring a fast, mobile-optimized, and accessible user experience. Security-wise, the site employs HTTPS, security headers, and reputable hosting via Cloudflare, though it lacks explicit public security policies or incident response information. Overall, Bloomerang demonstrates a mature digital presence with good privacy compliance and business credibility, making it a trustworthy platform for its target audience.

G

GODZONE

godzone.sk

0

Projekt Godzone is a Slovak non-profit evangelization initiative focused on religious outreach and community engagement. The website serves as an informational and engagement platform for this project, targeting a general audience interested in religious activities in Slovakia. The domain has been active since 2009, indicating a stable presence in its niche. The website employs WordPress CMS with a professional Brooklyn theme and integrates SEO best practices via Yoast SEO plugin, ensuring good visibility and user experience. Technical infrastructure includes Cloudflare DNS and DNSSEC, enhancing domain security and reliability. Google Analytics and Tag Manager are used for visitor tracking, balanced with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and DNSSEC, though additional HTTP security headers could improve defenses. No direct contact emails or phone numbers are published, relying on contact forms for communication. No explicit security or incident response policies are found, suggesting room for improvement in transparency and readiness. Overall, the website is professional, secure, and compliant with privacy regulations, serving its non-profit mission effectively.

P

Konzumace alkoholu | Pij s rozumem

pijsrozumem.cz

0

The website www.pijsrozumem.cz is a Czech language educational platform focused on promoting responsible alcohol consumption and harm reduction. It provides informational content, videos, blogs, and tools such as an alcohol calculator to help users understand alcohol effects and risks. The site targets a broad audience including adults, parents, teachers, teens, and drivers, aiming to reduce alcohol-related harm in society. The platform appears to be non-commercial and likely non-profit, emphasizing public health awareness. Technically, the site is built on the Webflow platform, utilizing modern web technologies including jQuery, Google Fonts, and particles.js for visual effects. It employs Google Tag Manager for analytics and CookieYes for cookie consent management, indicating a moderate level of digital maturity. The site is mobile optimized with good navigation and content structure, though accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent, but lacks visible security headers and explicit security or incident response policies. No contact emails or phone numbers are provided, which limits direct communication channels. The absence of WHOIS data reduces domain trustworthiness, though the site content and external references to recognized organizations support its legitimacy. Overall, the site is a well-designed, content-rich educational resource with moderate technical and security posture. Strategic improvements in security headers, contact transparency, and domain registration verification would enhance trust and compliance.

B

Budweis European Capital of Culture 2028 Association

budejovice2028.eu

0

The website www.budejovice2028.eu serves as the official platform for České Budějovice's candidacy as the European Capital of Culture 2028. It provides comprehensive information about the candidacy, cultural activities, projects, and community engagement initiatives. The site targets local residents, cultural organizations, volunteers, and the broader European cultural community. It is supported by local government and cultural institutions, positioning itself as a key cultural promotion and community engagement entity in the South Bohemia region. Technically, the website is built on the Solidpixels CMS platform, utilizing modern web technologies including JavaScript, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile-optimized, accessible, and performs moderately well. It employs HTTPS with good SSL configuration and secure forms with anti-spam measures, though some security headers could be improved. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and no visible sensitive data exposure. Cookie consent mechanisms and GDPR compliance indicators are present, reflecting a strong privacy posture. No critical vulnerabilities or security incidents were detected. The WHOIS data is unavailable due to EURid privacy policies, but the domain appears legitimate and consistent with the website's cultural and regional focus. Overall, the website is professional, trustworthy, and well-maintained, with strong business credibility and compliance. Strategic recommendations include enhancing security headers and continuing regular security audits to maintain a robust security posture.

D

DERTOUR Foundation e.V.

dertouristik-foundation.com

0

DERTOUR Foundation e.V. is a German non-profit organization established in 2014 by the DERTOUR Group, focusing on supporting educational, nature conservation, and animal protection projects in less developed tourist destinations worldwide. The foundation operates internationally with a network of partners and emphasizes sustainable development and social responsibility. The website is professionally designed using WordPress and Elementor, featuring multilingual support (German and English) and detailed project information. Technical infrastructure includes modern CMS and analytics tools with privacy considerations such as IP anonymization and cookie consent. Security posture is generally good with HTTPS and no visible vulnerabilities, but lacks some security headers and formal policies like privacy and terms of service. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the website is trustworthy and well-maintained but would benefit from improved transparency and formal policy disclosures.

J

Junák – český skaut, z. s.

skaut.cz

0

Junák – český skaut, z. s. is a prominent Czech non-profit organization dedicated to youth development through scouting activities. The organization serves a large community of over 78,000 scouts across 2,360 local groups, offering programs tailored to various age groups from children to adults. Their mission emphasizes friendship, adventure, self-confidence, and fairness, engaging both youth and adult volunteers. The website reflects a well-established entity with strong community ties and active fundraising efforts.

B

Bloomerang

bloomerang.co

0

Bloomerang is a well-established company founded in 2002, specializing in nonprofit fundraising software and CRM solutions. Their platform offers a comprehensive suite of tools including online giving, peer-to-peer campaigns, auctions, and volunteer management, targeting nonprofit organizations and fundraisers. The company positions itself as a total Giving Platform, aiming to empower fundraisers to increase donations and deepen donor relationships. The website reflects a mature digital presence with professional design, clear navigation, and extensive marketing and analytics integrations. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses a variety of third-party marketing and analytics tools, indicating a sophisticated digital marketing strategy. Security posture is generally strong with HTTPS enforced and domain registration secured, though some improvements such as enabling DNSSEC and publishing security policies could enhance trust. Privacy compliance is an area for improvement as no explicit privacy or cookie policies were found in the provided content. Overall, the website is professional, trustworthy, and well-optimized, serving its target audience effectively.

P

Pražští zvoníci svatovítští, z. s.

campanarii.cz

0

The website www.campanarii.cz represents the non-profit association 'Pražští zvoníci svatovítští, z. s.', dedicated to the cultural and historical preservation of bell ringing traditions, particularly related to the St. Vitus Cathedral in Prague. It offers rich content including articles, event calendars, archives, and community engagement features. The site targets individuals interested in religious and cultural heritage, providing educational and event-related information. Technically, the site is built on WordPress with common plugins and libraries such as jQuery and MetaSlider, offering a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy/cookie policies, which are compliance gaps. The absence of WHOIS data reduces domain legitimacy confidence, though the site content and structure indicate a legitimate cultural association. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

Č

Člověk a Víra

clovekavira.cz

0

Člověk a Víra is a Czech non-profit organization dedicated to documenting and sharing religious and cultural content related to faith communities primarily in the Czech Republic. The website serves as a multimedia platform offering photographic galleries, exhibitions, and media publications that cater to religious audiences and the general public interested in faith and church life. It maintains a multilingual presence to reach broader audiences in neighboring countries and internationally. Technically, the website is built on Drupal 10, leveraging modern web technologies and Google Tag Manager for analytics. The site is mobile-optimized and provides a clear navigation structure, enhancing user experience. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism compliant with GDPR, though it lacks explicit security policies and incident response contacts. Overall, the website demonstrates a good security posture with room for improvement in security headers and transparency. The domain registration is consistent and legitimate, supporting the organization's credibility. Strategic recommendations include enhancing security headers, publishing security policies, and improving contact transparency to strengthen trust and compliance.

C

Cornerstone OnDemand Foundation

cornerstoneondemand.org

0

The Cornerstone OnDemand Foundation website presents a nonprofit organization focused on building capacity for other nonprofits by providing free skill development opportunities to employees, volunteers, and communities. The site is built on the Wix platform, leveraging standard Wix technologies and scripts, indicating a moderate level of digital maturity. The content is professionally presented with a clear mission but lacks comprehensive privacy, cookie, and security policies, which are critical for trust and compliance. Security posture is basic with no evident security headers or incident response information, and WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust. Overall, the site is functional and serves its nonprofit educational purpose but would benefit from enhanced security and compliance transparency.

Neon One is a technology company specializing in providing integrated software solutions for nonprofit organizations. Their platform combines donor management, fundraising, memberships, events, and ticketing into a unified SaaS offering tailored to the nonprofit sector. The company positions itself as a key player in the nonprofit software market, targeting organizations seeking streamlined management tools. The website reflects a professional and consistent brand image with clear messaging aligned to its target audience. Technically, the website is built on WordPress CMS, leveraging popular plugins such as Yoast SEO for search optimization and integrates multiple marketing and analytics tools including Google Analytics, Google Tag Manager, Pardot, and Visual Website Optimizer. The site uses Cloudflare for DNS and enforces HTTPS, indicating a modern and secure infrastructure. Performance and mobile optimization are good, though accessibility features are basic. From a security perspective, the site employs HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. DNSSEC is not enabled, representing a minor security gap. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with cookie consent present but no visible privacy policy or terms of service. Overall, Neon One's website demonstrates a mature digital presence with strong business credibility and technical implementation. To enhance trust and compliance, it is recommended to publish comprehensive privacy and security policies, enable DNSSEC, and provide clear contact information for security incidents.

O

Oblastní charita Hradec Králové

charitahk.cz

0

Oblastní charita Hradec Králové is a regional non-profit organization providing a wide range of social and healthcare services including support for seniors, homeless people, victims of domestic violence, and families with disabled children. It operates as part of the larger Charita Česká republika network and maintains a strong presence in the Hradec Králové region. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the site uses modern web technologies such as Google Tag Manager, Google Analytics, and a cookie consent management platform, ensuring compliance with GDPR and user privacy standards. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security headers and incident response information suggests room for improvement. The lack of WHOIS data is a notable gap in domain trust assessment but does not detract significantly from the overall legitimacy given the organization's transparency and partner affiliations. Strategic recommendations include enhancing security policies, publishing incident response contacts, and improving domain registration transparency.

J

Junák – český skaut, středisko Sedmička Milevsko

junakmilevsko.net

0

Junák – český skaut, středisko Sedmička Milevsko is a small non-profit scouting organization based in Milevsko, Czech Republic. The organization provides a variety of scouting programs for children and youth, focusing on experiential learning, character development, and community engagement. Their offerings include regular meetings, outdoor activities, camps, and social events, supported by a team of named leaders and volunteers. The website reflects a well-maintained digital presence with clear branding and comprehensive contact information, targeting families and youth interested in scouting activities. Technically, the website is built on WordPress 6.3.7 with common plugins such as Easy Facebook Likebox and uses jQuery. It integrates social media feeds and Google Calendar for event scheduling, enhancing user engagement. The site is mobile-optimized and accessible, with good SEO practices. However, it lacks explicit privacy and cookie policies, which is a compliance gap. From a security perspective, the site uses HTTPS with good SSL configuration but lacks security headers and formal security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content or scripts. The absence of WHOIS data for the domain is notable and warrants verification to confirm domain registration legitimacy. Overall, the website is professional and trustworthy for its intended audience but should improve privacy compliance and domain registration transparency to enhance trust and security posture.

T

Turistický spolek Lipenska

tslipenska.cz

0

Turistický spolek Lipenska is a certified regional destination organization focused on promoting and developing tourism in the Lipensko area of the Czech Republic. Founded in 2016, it serves as a non-profit entity that unites local municipalities, businesses, and interest groups to enhance the region's attractiveness and quality of life for residents. The organization operates the tourist web Lipensko.cz, providing comprehensive regional information and services to visitors and locals alike. Technically, the website is built on WordPress with popular plugins and themes, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal vulnerability disclosure mechanisms. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site presents a trustworthy and professional image aligned with its business purpose.

D

Direct nadace

directnadace.cz

0

Direct nadace is a Czech non-profit foundation established in 2010, originally as Nadace VIGO, focusing on social inclusion, youth development, amateur sports, volunteerism, and emergency response. It operates under the Direct group umbrella, leveraging business resources to create social impact. The website is modern, well-designed, and mobile-optimized, built on Next.js and React with media hosted on AWS S3. Privacy and cookie policies are implemented with consent management tools. Security posture is strong with HTTPS and security headers, though no explicit security or incident response policies are published. WHOIS data is unavailable, which slightly impacts trust but the website content and external references support legitimacy.

M

Místní akční skupina Krkonoše, z. s.

maskrkonose.cz

0

Místní akční skupina Krkonoše, z. s. is a Czech non-profit organization dedicated to the sustainable development of the Krkonoše rural region. The organization supports local municipalities, non-profits, and entrepreneurs by facilitating project funding, promoting local craftsmanship, and certifying authentic regional products under the brand 'Krkonoše Originální Produkt'. Their approach leverages the LEADER method to foster community-driven growth and improve quality of life in the region. The website reflects a well-structured, content-rich platform with clear navigation and up-to-date news, targeting local stakeholders and residents. Technically, the website uses the Estofan CMS platform with JavaScript libraries including jQuery and Nivo Slider for UI elements. Google Analytics and Google Tag Manager are employed for visitor tracking, with a cookie consent mechanism that denies tracking by default, indicating a basic level of privacy compliance. The site is mobile-optimized and presents a professional design, although accessibility features are basic. Performance is moderate with room for improvement. From a security perspective, the site lacks visible HTTP security headers and detailed security or incident response policies. SSL/TLS configuration details are not provided, and WHOIS data is unavailable, which reduces transparency. However, no critical vulnerabilities or suspicious content were detected. The organization’s non-profit nature justifies privacy protection in domain registration. Overall, the security posture is moderate but could be enhanced by implementing standard security headers and publishing comprehensive privacy and security policies. The overall risk assessment is low to moderate, with recommendations focusing on improving security headers, enhancing privacy disclosures, and increasing transparency in domain registration. The website is trustworthy and professional, serving its community development mission effectively.

E

Elk River Systems

eventgroovefundraising.com

0

Eventgroove is a medium-sized technology company specializing in providing an all-in-one online fundraising platform tailored for nonprofits. Their platform supports various fundraising methods including peer-to-peer campaigns, auctions, raffles, and crowdfunding, with a strong emphasis on ease of use and customer support. The company positions itself as a cost-effective solution with no hidden fees, appealing to small and large nonprofits alike. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the website is built on WordPress using the Divi theme and enhanced with NitroPack for performance optimization. It integrates modern web technologies and third-party services such as Vimeo for video content and HubSpot for marketing and analytics. The site demonstrates good SEO and accessibility practices, with fast loading times and responsive design. From a security perspective, the site enforces HTTPS and employs standard security headers, contributing to a strong security posture. However, it lacks a publicly available security policy and incident response information, which are recommended for enhanced transparency and trust. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a trustworthy and professional image with comprehensive privacy and cookie policies. The absence of WHOIS registration data is a notable concern, suggesting the need for further verification of domain legitimacy. Strategic recommendations include publishing security policies, adding vulnerability disclosure mechanisms, and improving incident response visibility to strengthen security and compliance posture.

Neon One is a technology company specializing in providing integrated software solutions for nonprofit organizations. Their platform combines donor management, fundraising, memberships, events, and ticketing into a unified system, positioning them as a key player in the nonprofit software market. Founded in 2016, the company targets nonprofit organizations seeking streamlined management tools to enhance donor engagement and event coordination. The website reflects a professional and consistent brand image, supported by structured data and social media presence on Facebook and LinkedIn. Technically, the website is built on WordPress CMS and leverages a modern technology stack including jQuery, Google Tag Manager, Google Analytics, Pardot marketing automation, AdRoll retargeting, and Visual Website Optimizer for A/B testing. Hosting and DNS services are provided by GoDaddy and Cloudflare respectively. The site demonstrates good SEO optimization and mobile responsiveness, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and security header implementation. From a security perspective, the site uses HTTPS with a valid SSL configuration and domain registration protections such as clientDeleteProhibited status. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data. There is no published privacy policy or terms of service found in the analyzed content, though a cookie consent mechanism is implemented via CookieYes, indicating some level of privacy compliance. No incident response or vulnerability disclosure policies are published, which could be improved to enhance trust and compliance. Overall, Neon One's website presents a trustworthy and professional front for their nonprofit software services, with a solid technical foundation and marketing integration. To further strengthen their security posture and compliance, it is recommended to publish comprehensive privacy and security policies, enable DNSSEC, and implement security headers. Enhancing accessibility and providing clear contact information would also improve user trust and engagement.

L

Leave No Trace

lnt.org

0

Leave No Trace is a well-established nonprofit organization dedicated to promoting responsible outdoor recreation through education, research, and community programs. Their website reflects a mature digital presence with comprehensive content, multilingual support, and a professional design that effectively communicates their mission and services. The organization leverages modern web technologies including WordPress with Elementor, Bootstrap, and various plugins to deliver a responsive and accessible user experience. Security measures such as HTTPS, Google reCAPTCHA, and Cloudflare DNS are in place, although some security headers could be improved. The domain registration is consistent with the organization's identity and history, enhancing trustworthiness. Overall, the website serves as a credible and authoritative platform for environmental stewardship education.

I

International Council for Science (ICSU)

council.science

0

The International Science Council (ISC) operates as a global non-governmental organization dedicated to advancing science as a public good worldwide. The website serves as a professional platform to communicate the organization's mission, membership, and activities to the international scientific community and stakeholders. The domain is registered to the legitimate organization based in France, consistent with the website's claims. The site uses WordPress CMS with Elementor and integrates Google Analytics and Cookiebot for analytics and cookie consent management, reflecting a moderate level of digital maturity. From a technical perspective, the website is hosted behind Cloudflare DNS and CDN services, uses HTTPS with a good SSL configuration, and demonstrates good mobile optimization and accessibility. SEO practices are well implemented with proper meta tags and structured data. However, the absence of DNSSEC and security headers indicates room for improvement in security hardening. Security posture is generally good with HTTPS enforced and clientTransferProhibited domain status, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Business credibility is strong due to clear organizational identity and professional content. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security documentation to improve compliance and user trust.

N

Nadace Partnerství

sazimebudoucnost.cz

0

Sázíme budoucnost is a Czech non-profit environmental initiative managed by Nadace Partnerství focused on planting 10 million trees to create resilient cities and healthy landscapes. The website is professionally designed, leveraging modern web technologies including Kentico CMS, Bootstrap, AngularJS, and jQuery. It features comprehensive content, institutional partnerships, and active social media engagement. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers are not detected. WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the overall legitimacy is supported by the organization's public presence and partnerships. Privacy compliance is strong with a clear GDPR policy and cookie management. Contact information is not explicitly listed on the homepage, and no terms of service or incident response policies are published.

I

International Federation of Red Cross and Red Crescent Societies

ifrc.org

0

The International Federation of Red Cross and Red Crescent Societies (IFRC) operates the world’s largest humanitarian network, supporting local Red Cross and Red Crescent Societies in over 191 countries with more than 16 million volunteers. The organization focuses on disaster response, health and care, community resilience, and advocacy. The website is professionally designed using Drupal 10, with modern web technologies and good mobile optimization. It features comprehensive content, clear navigation, and strong branding consistency. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. WHOIS data is unavailable due to malformed output, which limits domain registration trust analysis, but the website’s professional appearance and trusted external links support its legitimacy. Privacy compliance is good with clear policies and consent mechanisms. Overall, the site demonstrates a mature digital presence suitable for a large non-profit humanitarian organization.