Security Directory

Wikimedia Česká republika is a non-profit organization dedicated to supporting Wikimedia projects such as Wikipedia, Wikimedia Commons, and Wikidata within the Czech Republic. It focuses on community building, educational programs, partnerships with cultural and public institutions, and advocacy for free knowledge. The organization operates as the official Czech chapter of the Wikimedia Foundation, providing a trusted and recognized presence in the region. The website reflects this mission with comprehensive program descriptions, event calendars, and community news, targeting volunteers, educators, and cultural partners. Technically, the website is built on WordPress, leveraging modern JavaScript libraries like Leaflet.js for maps and Flickity for carousels. It integrates Google Analytics and Tag Manager for analytics and uses a cookie consent management platform to comply with privacy regulations. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. From a security perspective, the site enforces HTTPS and uses a consent mechanism for cookies, but lacks explicit security headers such as Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable, which is common for .cz domains, but the website's content and branding strongly indicate legitimacy and trustworthiness. Overall, the site demonstrates a mature digital presence with strong alignment to its non-profit mission, good technical implementation, and a solid security posture. Strategic improvements could include enhancing security headers and expanding transparency around privacy and incident response policies.

F

Fond ohrožených dětí

fod.cz

0

Fond ohrožených dětí is a Czech non-profit organization dedicated to supporting endangered children through direct aid, family care alternatives, advocacy, and fundraising. The organization has a strong national presence with multiple partners and a clear mission to help children at risk of abuse, neglect, or abandonment. Their website reflects a mature digital presence with good content quality and consistent branding. Technically, the site uses a mix of legacy JavaScript libraries and modern tracking tools, with HTTPS enforced and moderate performance. Security posture is adequate but could be improved by adding security headers and explicit privacy and cookie policies. The absence of WHOIS data reduces domain trust but does not detract from the legitimacy of the organization as presented on the site. Overall, the site is safe, professional, and trustworthy for its audience.

T

Tichá linka

tichalinka.cz

0

Tichá linka is a Czech non-profit organization providing online sign language interpretation and speech transcription services primarily for the deaf, hard of hearing, and those with hearing impairments. The website offers access to these services via a mobile application and online platform, supported by governmental and municipal partners. The organization holds a recognized position in social services within the Czech Republic, with a focus on accessibility and communication support. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, hosted likely on Vercel, and optimized for mobile and performance. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers and explicit policies are missing. Privacy compliance is partially addressed with a privacy policy but lacks cookie consent mechanisms. WHOIS data is unavailable, limiting domain trust assessment, but the website's content and partner references support legitimacy.

D

DOBRÝ ANDĚL, nadace

dobryandel.cz

0

DOBRÝ ANDĚL is a Czech non-profit foundation dedicated to providing regular monthly financial support to families with children suffering from serious illnesses such as cancer. The foundation operates transparently with clear donation channels and public trust indicators. Their website is professionally designed using WordPress and integrates modern web technologies including SEO plugins, Algolia search, and interactive elements like sliders and live chat. The site is well-optimized for mobile and provides comprehensive information for donors and recipients alike. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. WHOIS data is unavailable, which slightly impacts domain trustworthiness, but the overall business credibility remains high due to transparent operations and clear contact information.

The Havanna-Initiative website serves as a non-profit advocacy platform focused on ending the blockade against Cuba. It provides news, calls to action, press information, and contact options primarily through a contact form. The organization appears to be small and Germany-based, founded in 2020, with a clear mission targeting activists and supporters of Cuba. The website uses WordPress CMS with common web technologies such as jQuery and Font Awesome, hosted by Cronon GmbH. The technical infrastructure is moderate in performance and basic in mobile optimization and accessibility. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit security or incident response policies are published. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the website is functional but basic in design and content quality, with moderate trustworthiness and no detected adult or explicit content.

F

Freundschaftsgesellschaft BRD-Kuba e.V.

fgbrdkuba.de

0

Freundschaftsgesellschaft BRD-Kuba e.V. is a well-established non-profit solidarity organization founded in 1974, focusing on fostering relations and support for Cuba within Germany. The website serves as an informational platform targeting individuals and groups interested in solidarity activities. Technically, the site is built on WordPress using the Divi theme and enhanced with the Rank Math SEO plugin, hosted likely by 1&1 IONOS. The site is accessible, mobile-optimized, and uses HTTPS with good SSL configuration, though it lacks some security headers and formal privacy and cookie policies. Security posture is moderate with room for improvement in transparency and incident response readiness. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

The EGIA Foundation is a U.S.-based non-profit organization established in 2017, dedicated to strengthening the HVAC industry workforce by providing scholarships, training, research, and recruitment resources. The foundation targets young people pursuing HVAC careers, contractors, educators, corporations, and nonprofits, positioning itself as a key player in HVAC workforce development. The website reflects a professional and consistent brand with clear messaging and a focus on community and industry collaboration. Technically, the site is built on WordPress with WooCommerce and uses modern analytics and marketing tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the foundation.

N

Netzwerk Cuba – informationsbüro – e.V.

netzwerk-cuba.org

0

Netzwerk Cuba – informationsbüro – e.V. is a German non-profit organization dedicated to solidarity with Cuba, providing information, campaigns, and organizing events to support Cuban causes. The website serves as a hub for news, official documents, and community engagement, targeting activists and supporters interested in Cuba-related political and social issues. The organization maintains a consistent brand presence and multilingual content to reach a broader audience. Technically, the website is built on WordPress using the Weaver Xtreme theme and several plugins for event management, email encoding, and newsletters. The site is moderately performant, mobile-optimized, and includes basic accessibility features. Security practices include HTTPS enforcement and email obfuscation, though it lacks some security headers and a cookie consent mechanism. The security posture is generally good with no detected vulnerabilities or malware, but the absence of WHOIS data due to a malformed or restricted WHOIS response limits full trust assessment. The site does not use tracking or advertising services, enhancing privacy compliance. Overall, the website is professional, content-rich, and trustworthy for its niche audience. Strategic recommendations include implementing security headers, adding a cookie consent banner for GDPR compliance, publishing a security.txt file for vulnerability disclosure, and improving WHOIS transparency to enhance trustworthiness and security posture.

I

InterBündnis

inter-buendnis.de

0

InterBündnis is a German non-profit political movement founded in 2016, uniting 40 organizations and 40,000 supporters against right-wing developments, fascism, war, and environmental destruction. The website serves as an information and coordination platform for progressive and revolutionary forces across Germany, promoting democratic and solidarity-based activism. The organization participates in elections through affiliated lists and campaigns against anti-communism. Technically, the website is built with standard HTML, CSS, and JavaScript, hosted on rzone.de servers, and is mobile optimized with moderate performance. Security posture is basic with no visible security headers or published policies, and privacy compliance is lacking due to absence of privacy and cookie policies. Contact is limited to email and social media channels. Overall, the site is trustworthy and safe, but improvements in security and compliance documentation are recommended.

U

United Front

united-front.info

0

United Front is an international antiimperialist coalition focused on combating fascism, war, and environmental destruction. The organization hosts congresses, webinars, and publishes resolutions to coordinate efforts among over 120 member organizations and individuals worldwide. The website serves as an informational and organizational platform for these activities, targeting activists and political groups globally. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, intl-tel-input, and Summernote for rich text editing. Google Analytics is integrated for visitor tracking. The site is mobile-optimized with a moderate performance profile. However, there is no evidence of a CMS or advanced hosting details. The website lacks explicit privacy and cookie policies, which is a gap in compliance. From a security perspective, the site uses HTTPS and external secure resources but lacks visible security headers and formal security policies. No contact information or incident response channels are provided, limiting transparency. The WHOIS data is unavailable due to registry limitations or privacy protection, which is understandable given the political nature of the organization but reduces trust slightly. Overall, the website is functional and informative but would benefit from improved privacy compliance, enhanced security headers, and clearer contact information to strengthen trust and security posture.

V

Verlag 8. Mai GmbH

unblock-cuba.org

0

The website www.unblock-cuba.org is a German-language non-profit advocacy platform dedicated to ending the US economic blockade against Cuba. It is operated by Verlag 8. Mai GmbH and serves as a hub for information dissemination, campaign coordination, and donation collection. The site targets activists and supporters interested in Cuba solidarity, providing multilingual resources and calls to action. The business model is donation-based, focusing on political advocacy rather than commercial services. Technically, the site is built on WordPress 6.8.3 using the GeneratePress theme and several plugins including Contact Form 7 and DSGVO cookie compliance tools. It employs HTTPS with a valid SSL certificate, ensuring secure communications. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO optimizations are basic. No advanced frameworks beyond WordPress are detected. From a security perspective, the site uses HTTPS and has a cookie consent mechanism, but lacks advanced security headers and publicly available security policies or incident response information. No vulnerabilities or malicious indicators are found, but the absence of WHOIS data limits domain trust assessment. Privacy compliance is strong with a comprehensive GDPR-aligned privacy policy. Overall, the website presents a trustworthy and professional front for a small non-profit campaign. Recommendations include enhancing security headers, publishing security and incident response policies, and improving contact transparency. The domain's missing WHOIS data is a concern but does not currently indicate malicious intent. The site is safe for general audiences and free from adult or questionable content.

M

Mutual Aid LA Network

mutualaidla.org

0

Mutual Aid LA Network is a small non-profit organization serving as a connector and information hub for mutual aid efforts across Los Angeles. The website provides information about their projects, resource directories, and community engagement opportunities. Their market position is focused on local community solidarity and abolitionist principles, supporting mutual aid groups and individuals through various projects and donations. Technically, the website is built on WordPress.com using Jetpack and Gutenberg, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and domain registrar locks but lacks DNSSEC and security headers. Privacy and cookie policies are absent, representing compliance gaps. Overall, the site is trustworthy and safe for general audiences but could improve in privacy and security transparency.

G

Grief and Hope Los Angeles

griefandhopela.com

0

Grief and Hope Los Angeles is a small non-profit volunteer organization focused on raising funds to support artists and art workers affected by the Los Angeles fires in January 2025. The website is hosted on Squarespace and uses a clean, professional design with clear calls to action directing visitors to donate via GoFundMe. The technical infrastructure is modern and secure, with HTTPS and HSTS enabled, but lacks advanced security headers and privacy compliance features. No contact information or privacy policies are present, which limits trust and compliance. The domain WHOIS data is unavailable, raising questions about domain registration status and legitimacy, though the website content and hosting suggest a genuine community effort.

F

Fair Trade Town

fairtradetown.ch

0

Fair Trade Town is a Swiss non-profit initiative dedicated to promoting justice, sustainability, and social responsibility through the certification and support of municipalities as Fair Trade Towns. The website serves as a platform to raise awareness, provide resources, and showcase success stories from certified towns. The organization positions itself as a key player in advancing global sustainability goals at the local level, engaging communities and local partners in fair trade practices. Technically, the website is built on WordPress 6.8.3, utilizing modern web technologies including Google Tag Manager for analytics and Borlabs Cookie for consent management. The site is mobile-optimized with good SEO practices and uses HTTPS to secure communications. The presence of Google Maps API enhances user interaction with geographic data about Fair Trade Towns. From a security perspective, the site enforces HTTPS and uses a reputable cookie consent plugin, but lacks explicit security headers and visible privacy or terms of service pages, which are recommended for enhanced compliance and trust. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website presents a professional and trustworthy image with a clear mission and audience. Strategic improvements include publishing comprehensive privacy and terms policies, enhancing security headers, and providing clear contact information to strengthen compliance and user trust.

J

Jugendverband REBELL

rebell.info

0

Jugendverband REBELL is a German youth political organization focused on activism and education, promoting rebellion as a justified cause. The website is built on WordPress with a modern theme and plugins, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies. WHOIS data is privacy protected, which is typical for non-commercial organizations but limits transparency. Overall, the site is safe, professional, and targeted at youth interested in political activism.

E

Esomar Foundation

esomarfoundation.org

0

The Esomar Foundation is a charitable non-profit organization focused on leveraging market, social, and opinion research expertise to support social good initiatives globally. It operates as the charity arm of ESOMAR, providing scholarships, training, and support programs for researchers and students, particularly those facing economic hardships. The website is professionally designed using WordPress and integrates common analytics and SEO tools, reflecting a moderate to good level of digital maturity. Security posture is adequate with HTTPS and anonymized analytics tracking, but lacks advanced security headers and explicit privacy compliance mechanisms. Overall, the foundation presents a trustworthy and credible online presence aligned with its mission.

N

Nadace O2

nadaceo2.cz

0

Nadace O2 is a well-established corporate foundation affiliated with the telecommunications operator O2, operating since 2006. The foundation focuses on supporting the younger generation, providing technology for community benefit, and engaging O2 employees in social activities. It holds a strong market position in the Czech Republic's non-profit sector with a medium-sized organizational footprint. The website reflects a professional and modern digital presence, leveraging contemporary web technologies such as Alpine.js, Google reCAPTCHA, and a consent management platform to ensure compliance and user experience. Security posture is robust with HTTPS enforcement and privacy compliance mechanisms in place, although explicit security headers could be further verified. Overall, the site demonstrates high trustworthiness and professionalism with clear business information and active social media engagement.

Stiftung Buchkunst is a well-established non-profit organization based in Germany that promotes exemplary book design through prestigious competitions such as 'Die Schönsten Deutschen Bücher', 'Förderpreis für junge Buchgestaltung', and 'Best Book Design from all over the World'. The organization targets the book industry, designers, publishers, and the general public interested in book arts. Their business model centers on cultural promotion and recognition of design excellence rather than commercial sales. The website reflects a mature digital presence with clear navigation, multilingual support, and a focus on content quality. Technically, the site uses standard web technologies with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though additional security headers and policies could enhance protection. Overall, the site is trustworthy and professional, with transparent contact information and GDPR compliance.

F

Friends of the Rail Park

therailpark.org

0

Friends of the Rail Park is a non-profit organization dedicated to revitalizing unused rail lines in Philadelphia into a vibrant public greenway spanning three miles across ten neighborhoods. The website showcases their vision, progress, and community engagement efforts, including events, tours, and volunteer opportunities. The organization positions itself as a community-centric urban development entity focused on enhancing public spaces for pedestrians and bicyclists. Technically, the website is built on modern frameworks such as Gatsby and React, leveraging Prismic CMS for content management and Google Tag Manager for analytics. The site is well-optimized for performance, mobile responsiveness, and accessibility, providing a professional user experience. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and privacy/cookie policies indicates room for improvement. Overall, the site reflects a trustworthy and credible non-profit with clear contact information and active social media presence.

G

Gut Königsmühle

gut-koenigsmuehle.de

0

Gut Königsmühle is a German non-profit initiative under the help and hope Stiftung focused on building a new hostel for children and youth to foster educational and social inclusion. The website serves as a donation campaign platform highlighting the project's goals, costs, and benefits for disadvantaged children and youth in Dortmund. Technically, the site is built on WordPress with modern plugins like Elementor and Rank Math PRO, optimized for SEO and performance with caching and lazy loading. Security posture is adequate with HTTPS and some best practices, but lacks comprehensive security headers and formal policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy or terms pages. Overall, the site is professional, trustworthy, and safe, targeting donors and community supporters. Strategic improvements include adding privacy and security policies, enhancing contact transparency, and strengthening security headers.

S

Stiftung Polytechnische Gesellschaft Frankfurt am Main

dasfeiernwir.de

0

The website dasfeiernwir.de represents the Stiftung Polytechnische Gesellschaft Frankfurt am Main, a non-profit organization celebrating 20 years of engagement in education, community cohesion, and cultural activities in Frankfurt. The site promotes a city-wide festival featuring music, interactive activities, and family-friendly events, positioning the foundation as a key cultural player in the region. The website is professionally designed, mobile-optimized, and uses Contao CMS with Matomo analytics for user tracking. However, explicit privacy and terms of service pages are not found, which could be improved for compliance and transparency. Security posture is moderate with HTTPS usage but lacks visible security headers and detailed policies. The domain registration is consistent with the organization's profile, though detailed WHOIS registrant information is limited. Overall, the site is trustworthy and serves its community-focused mission effectively.

P

Polytechnische Gesellschaft e. V.

polytechnische.de

0

Polytechnische Gesellschaft e. V. is a historic non-profit civic organization based in Frankfurt, Germany, founded in 1816. It focuses on community engagement, education, culture, and social initiatives, organizing events, workshops, and lectures to benefit the local population. The organization has several subsidiary and partner entities supporting its mission. The website is professionally designed using the Contao CMS, with good mobile optimization and clear navigation. It employs modern web technologies and respects privacy regulations with GDPR-compliant policies and cookie consent mechanisms. Security posture is strong with HTTPS, CSRF protection, and minimal tracking via Matomo analytics. WHOIS data confirms domain legitimacy and consistency with the organization's identity.

H

Haus des Stiftens für Unternehmen und Non-Profits gGmbH

stifter-helfen.de

0

Stifter-helfen is a German non-profit IT portal operated by Haus des Stiftens für Unternehmen und Non-Profits gGmbH. It facilitates IT product donations, discounted software, and IT-related knowledge sharing for non-profit organizations, foundations, and associations primarily in Germany. The website is well-positioned as a leading platform in this niche, supported by partnerships with major IT companies and a clear focus on serving the non-profit sector. Technically, the site runs on Drupal 7 with modern JavaScript libraries and integrates Usercentrics for GDPR-compliant consent management and Stripe for payment processing. The site is mobile-optimized and accessible, with good SEO practices and a professional design. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and professional, serving its target audience effectively.

H

Haus des Stiftens gemeinnützige GmbH

hausdesstiftens.org

0

Haus des Stiftens gemeinnützige GmbH is a German social enterprise dedicated to facilitating societal engagement by supporting foundations, companies, private individuals, and non-profit organizations. With over 30 years of experience, it offers a broad range of services including project management, digital solutions, and educational programs such as webinars and workshops. The organization positions itself as a key enabler of philanthropy and corporate social responsibility in Germany. Technically, the website is built on WordPress using modern plugins and frameworks, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. The lack of WHOIS transparency is mitigated by strong trust signals on the site. Overall, the website is professional, content-rich, and trustworthy, serving a specialized non-profit sector audience.

C

Copyright Alliance

copyrightalliance.org

0

Copyright Alliance is a well-established non-profit organization founded in 2007, dedicated to advocating for copyright laws and supporting the creative community. The website serves as a comprehensive resource hub offering educational materials, policy positions, and membership opportunities for creators. It holds a strong market position as a unified voice for copyright owners and creators in the United States. Technically, the website is built on WordPress with a modern tech stack including popular plugins and tracking tools, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and domain transfer lock, though improvements such as enabling DNSSEC and publishing security policies are recommended. Privacy compliance is partial, lacking a visible cookie consent mechanism despite the use of tracking scripts. Overall, the website demonstrates high business credibility and professionalism, with minor areas for enhancement in privacy and security transparency.

T

TechSoup Mexico

oscdigital.org

0

TechSoup Mexico operates as a nonprofit technology donation and discount platform serving nonprofit organizations primarily in Mexico. It is part of the global TechSoup network, providing access to software, cloud services, and training to enhance nonprofit operational capacity. The website is professionally designed using Drupal 7 and modern web technologies, offering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. WHOIS data is privacy protected, which is typical for nonprofits, and the domain is actively maintained. Overall, the site demonstrates high legitimacy and trustworthiness within its sector.

H

Haus des Stiftens für Unternehmen und Non-Profits gGmbH

stifter-helfen.at

0

Stifter-helfen Österreich operates as a specialized IT portal dedicated to serving non-profit organizations, foundations, and associations in Austria. The platform facilitates access to donated IT products, discounted software licenses, and cloud services, complemented by relevant IT knowledge and workshops. Positioned as a leading resource in the Austrian non-profit sector, it leverages partnerships with major IT vendors and organizations to provide valuable resources to its target audience. The website is professionally designed, content-rich, and well-structured to support user engagement and service delivery. Technically, the site is built on Drupal 7 with modern JavaScript libraries such as jQuery 3.6 and LayerSlider for interactive content. It employs Usercentrics for GDPR-compliant cookie consent management and integrates Google Tag Manager and Stripe.js for analytics and payment processing respectively. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. From a security perspective, the website enforces HTTPS, utilizes security headers, and protects forms with CSRF tokens inherent to Drupal. The presence of a consent management platform indicates strong privacy compliance. However, there is no explicit security policy or incident response contact information published, and the underlying Drupal 7 CMS is outdated, which may pose future security risks if not maintained. Overall, the website presents a low-risk profile with strong legitimacy, clear business purpose, and good compliance posture. Strategic recommendations include publishing a security.txt file, enhancing incident response transparency, and planning for CMS modernization to maintain security and operational resilience.

C

Connecting Up | Powered by Infoxchange

connectingup.org

0

Connecting Up, powered by Infoxchange, is a platform dedicated to providing donated and discounted technology to not-for-profit organizations. The website positions itself as an exclusive access point for non-profits to obtain software and technology from major providers such as Adobe, Microsoft, and Bitdefender. The business model focuses on supporting the non-profit sector by facilitating access to technology resources, enhancing their operational capabilities. The platform appears to be medium-sized and professionally branded, with consistent messaging and clear target audience focus. From a technical perspective, the website is built on Drupal CMS and utilizes modern front-end frameworks like Bootstrap. It integrates several analytics and marketing tools including Google Analytics, Facebook Pixel, Hotjar, and LinkedIn Insight Tag, indicating a moderate level of digital maturity and user tracking. The site is mobile optimized and demonstrates good SEO practices, though accessibility features are basic. Security-wise, the site enforces HTTPS and uses secure connections, but lacks visible security headers and explicit security policies such as incident response or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is limited, with no clear privacy or cookie policies found in the analyzed HTML content, which is a gap for GDPR and other regulations. Overall, the website is trustworthy and professional, serving a clear non-profit technology access purpose. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance its security posture and regulatory alignment.

C

Charity Digital Trust

charitydigitalexchange.org

0

Charity Digital Trust is a UK-based non-profit organization established in 2001, dedicated to helping charities become more digital through educational content and providing the UK's only discounted and donated software program for charities. The website positions itself as a trusted resource for UK charities, offering significant savings on software and digital services, supported by a strong brand presence and social proof such as Trustpilot reviews. The target audience is clearly UK charities and non-profit organizations seeking digital transformation support. Technically, the website is built on the Affino CMS platform, leveraging modern JavaScript libraries like jQuery and Bootstrap for UI components. It uses AWS Cloudfront as a CDN for hosting static assets, ensuring good performance and availability. The site is mobile-optimized and includes accessibility features such as the Recite Me toolbar. SEO best practices are followed with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and uses secure login forms. Cookie consent mechanisms are implemented in compliance with GDPR. However, explicit security policies and incident response information are not publicly available, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a mature digital presence with good content quality, technical implementation, and privacy compliance. The domain registration details align with the organization's history, supporting legitimacy. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and enhancing security headers to further strengthen the security posture.

T

TechSoup Global Network

tsgn.org

0

TechSoup Global Network is a well-established nonprofit organization that operates a global network of over 60 NGOs to facilitate the exchange of critical technology resources. The website demonstrates a strong market position with key philanthropic partnerships including major technology companies such as Microsoft, Adobe, and SAP. The platform serves a large audience of nonprofit organizations worldwide, providing impact stories, research, and local NGO tech marketplaces. Technically, the site is built on GravCMS and leverages modern web technologies including Bootstrap, jQuery, and Google Tag Manager, hosted likely on AWS infrastructure. The website is mobile-optimized and provides a professional user experience with clear navigation and multilingual support. Security posture is good with HTTPS enforced and use of reCAPTCHA, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is adequate with a comprehensive privacy policy and terms of service, though a cookie consent mechanism is missing. Overall, the site is trustworthy and professional, with no signs of malicious content or suspicious activity.

K

Körber-Stiftung

koerber-stiftung.de

0

Körber-Stiftung is a well-established German non-profit foundation focused on fostering a vibrant civil society, innovation, and international understanding through various projects, networks, and partnerships. The website presents a professional and comprehensive digital presence with rich content including events, podcasts, publications, and media resources targeting a broad audience including citizens, youth, educators, and professionals. Technically, the site leverages modern web technologies such as Alpine.js, Swiper.js, and ProcessWire CMS, combined with privacy-conscious analytics via Matomo and a robust cookie consent mechanism through Usercentrics. Security posture is strong with HTTPS enforcement and standard security headers, though there is room for improvement in publishing explicit security policies and vulnerability disclosure information. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements, reflecting a mature digital infrastructure suitable for a large non-profit organization.

H

help and hope Stiftung

helpandhope-stiftung.com

0

The help and hope Stiftung is a German non-profit foundation dedicated to improving the lives of disadvantaged children and youth by providing educational projects, holiday care, and community engagement at their core location Gut Königsmühle in Dortmund. The organization emphasizes sustainability, fairness, and personal development through participatory and experiential learning. Their digital presence is built on a modern WordPress platform with SEO and GDPR compliance plugins, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing and WHOIS domain registration data is unavailable, which slightly impacts trust. Overall, the website is professional, content-rich, and well-structured, targeting families, educational institutions, and community members. Strategic recommendations include enhancing security headers, improving contact transparency, and monitoring domain registration status to strengthen trust and compliance.

W

World Resources Institute

worldresources.org

0

World Resources Institute (WRI) is a globally recognized non-profit research organization dedicated to advancing environmental sustainability, climate action, and equitable development. The website reflects a mature and professional digital presence, offering extensive research, data, initiatives, and insights targeted at policymakers, researchers, and global stakeholders. WRI leverages a modern Drupal 10 CMS infrastructure with integrated analytics and consent management tools, ensuring a balance between user experience and privacy compliance. The security posture is solid with HTTPS enforcement and cookie consent, though there is room for improvement in security headers and public vulnerability disclosures. Overall, WRI's website demonstrates high trustworthiness and professionalism, supporting its mission to influence policy and catalyze change worldwide.

TechSoup Global is a well-established nonprofit organization founded in 1987, providing technology donations and discounted products to nonprofits, charities, and libraries primarily in the United States. The website demonstrates a strong market position as a leading provider in this niche, offering access to software, hardware, and technology services from major brands. The company targets nonprofit organizations seeking affordable technology solutions to enhance their operations. The technical infrastructure is built on Microsoft SharePoint with modern web technologies including Bootstrap 5, jQuery, and integrations with Google Tag Manager and HubSpot for analytics and marketing. The site is mobile-optimized and employs performance monitoring tools like New Relic, indicating a mature digital presence. SEO and accessibility are adequately addressed, though accessibility could be improved. Security posture is robust with HTTPS enforced, standard security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies, including consent mechanisms and GDPR compliance indicators. However, explicit security policies and incident response information are not publicly detailed. Overall, TechSoup's website reflects a professional, trustworthy, and secure platform aligned with its nonprofit mission. Strategic recommendations include publishing detailed security policies, adding vulnerability disclosure mechanisms, enhancing accessibility, and maintaining vigilance on third-party scripts to sustain security and compliance.

T

The Nature Conservancy

nature.org

0

The Nature Conservancy is a globally recognized non-profit organization dedicated to environmental conservation, focusing on protecting lands, waters, and addressing climate change. Their website reflects a mature digital presence with comprehensive content, clear calls to action for donations and volunteering, and a strong brand identity. Technically, the site leverages Adobe Experience Manager and integrates multiple modern APIs and third-party services to enhance user experience and engagement. Security posture is strong with HTTPS enforcement, reCAPTCHA on forms, and cookie consent mechanisms, though explicit security headers should be verified. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site is trustworthy, professional, and aligns well with the organization's mission and audience.

The website #VertrauenMachtWirkung represents a German non-profit initiative focused on shaping the future of philanthropy and foundations by promoting participation, diversity, and transparency. It serves as a platform for foundations and related organizations to collaborate, share resources, and engage in events and discussions. The initiative is relatively new, founded around 2024, and positions itself as a niche player within the philanthropic sector in Germany. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses SEO best practices via the Yoast plugin. The site is mobile-optimized and performs moderately well, with no detected blocking or WAF interference. However, some accessibility features are basic, and there is room for improvement in security headers and privacy compliance mechanisms. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and cookie consent mechanisms, which are important for GDPR compliance and user trust. No vulnerabilities or malicious content were detected, and the domain registration aligns reasonably well with the website's claims. Overall, the website presents a professional and trustworthy image suitable for its target audience of foundations and non-profits. Strategic improvements in privacy compliance and security transparency would enhance its credibility and user confidence.

Y

Yapla

yapla.com

0

Yapla is a Canadian-based company providing comprehensive nonprofit payment and management software designed to streamline daily tasks and enhance community engagement for associations and nonprofit organizations. The website presents a professional and consistent brand image, targeting nonprofit entities with a SaaS business model. The platform integrates various tools to simplify association management and payment processing, positioning itself as a key player in the nonprofit software market. Technically, the website leverages a proprietary CMS (Yapla CMS) and modern JavaScript frameworks such as Vue.js and jQuery. It incorporates multiple analytics and marketing tools including Google Analytics, Hotjar, Amplitude, and Facebook Pixel, reflecting a mature digital marketing and data collection strategy. The site is well-optimized for mobile devices and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms with granular user control, indicating compliance with GDPR and privacy regulations. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in transparency and security maturity. The lack of WHOIS data for the domain is a notable gap, reducing trust slightly despite the professional appearance and content. Overall, Yapla's website is a well-constructed platform serving the nonprofit sector with a solid technical foundation and privacy compliance. Strategic enhancements in security transparency and registrant information disclosure would further strengthen its trustworthiness and security posture.

A

Animals’ Angels / Christa Blanke

animalmemorial.org

0

Animals’ Angels operates the Animal Memorial website as a non-profit platform dedicated to honoring animals that have suffered during transport and deportation. The organization memorializes these animals by giving them names and sharing their photographs to raise awareness and advocate for animal welfare. The website serves a niche audience of animal welfare supporters and activists, providing a respectful and informative resource without commercial intent. Technically, the site is built on TYPO3 CMS with modern web technologies including jQuery, Bootstrap, and privacy-focused Matomo analytics. The site is well-structured, mobile-optimized, and uses HTTPS with good security practices, although some security headers are missing. Privacy compliance is addressed with clear data protection and cookie policies, including consent mechanisms. However, no explicit contact information or detailed security policies are publicly available, which could be improved. Overall, the website presents a trustworthy and professional image consistent with a small non-profit organization.

A

Animals’ Angels e. V

shop-animals-angels.de

0

Animals’ Angels e. V operates a German-language non-profit e-commerce website focused on animal welfare, specifically protecting farm animals during transport. The site offers informational materials and merchandise, with proceeds supporting their projects. The organization maintains a clear market niche with a dedicated target audience of animal lovers and supporters. Technically, the website runs on the modified eCommerce Shopsoftware platform, uses HTTPS, and includes modern JavaScript libraries like jQuery and Slick Slider, providing a good user experience with mobile optimization. Security posture is adequate with HTTPS and secure form handling, but lacks explicit security policies, vulnerability disclosure, and cookie consent mechanisms, which are areas for improvement. Overall, the domain and WHOIS data appear legitimate and consistent with a small non-profit entity. The website is trustworthy, professionally presented, and privacy-conscious with minimal tracking.

C

Crespo Foundation

crespo-foundation.de

0

The Crespo Foundation is a German non-profit organization dedicated to empowering individuals through cultural, educational, and social programs. Their website showcases a variety of initiatives including art exhibitions, workshops, scholarships, and community engagement projects. The foundation targets artists, youth, migrants, and the broader cultural community, positioning itself as a key player in cultural education and social empowerment in Germany with international collaborations. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, styled with Tailwind CSS, and hosted via DomainControl services. It employs Matomo for analytics, indicating a preference for privacy-conscious tracking. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and follows several best practices, though it lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear GDPR-aligned privacy and cookie policies. However, no incident response or security policy pages are published. Overall, the website is professional, trustworthy, and content-rich, reflecting the foundation's mission and credibility. Strategic improvements in security headers and incident response transparency could further enhance trust and resilience.

E

Earthquake Engineering Research Institute

learningfromearthquakes.org

0

The Learning From Earthquakes website is a professionally maintained platform operated by the Earthquake Engineering Research Institute, a reputable non-profit organization focused on earthquake research and community resilience. The site provides comprehensive earthquake investigation records and program information, targeting researchers, engineers, policymakers, and communities globally. The business model is educational and research-oriented, with a medium-sized organizational footprint and a well-established market position in the non-profit sector. Technically, the website is built on WordPress with Elementor and several supporting plugins, hosted by GreenGeeks. It demonstrates good mobile optimization, SEO practices, and a modern tech stack, although performance is moderate. The site lacks advanced security headers and DNSSEC, which are recommended for enhanced security. Privacy compliance is limited, with no cookie consent mechanism and a basic privacy policy. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but improvements are needed in security headers and published policies. The domain registration is consistent and transparent, supporting the site's legitimacy. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security practices to meet modern compliance standards.

N

Naidex

naidex.co.uk

0

Naidex is a well-established UK event focused on accessibility, inclusion, and the disability community, with over 50 years of history. The website serves as a comprehensive portal for event information, including speakers, exhibitors, and visitor details. Technically, the site uses a modern event platform (SHOWOFF by ASP.events) with common web technologies such as jQuery, Google Analytics, and Facebook Pixel, and implements cookie consent via Cookiebot. Security posture is adequate with HTTPS enforced but lacks explicit security headers and published security policies. The WHOIS data for the domain is unavailable due to domain naming rules violation, which raises concerns about domain registration legitimacy but does not detract from the professionalism of the website content. Overall, the site is credible and well-positioned in its niche but would benefit from improved transparency in privacy and security policies.

A

Animals' Angels

animals-angels.de

0

Animals' Angels is a German-based non-profit organization dedicated to the welfare of farmed animals, with a particular focus on protecting animals during transport. The organization operates internationally, advocating for improved animal welfare laws and raising public awareness through reports, publications, and monitoring activities. Their website is professionally designed using TYPO3 CMS, featuring clear navigation, multilingual support, and integration with privacy compliance tools such as Usercentrics. The organization maintains active social media channels and provides transparent contact information, enhancing trust and engagement with supporters. Technically, the website employs modern frameworks and analytics tools like Matomo, ensuring good performance and privacy-conscious tracking. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and formal security policies. Overall, Animals' Angels presents a credible, well-maintained digital presence aligned with its mission and audience.

H

Home for Kids e.V.

homeforkids.de

0

Home for Kids e.V. is a German non-profit organization dedicated to supporting children and adolescents who have experienced psychological trauma. The organization funds and promotes psychosocial care projects and initiatives aimed at helping young people recover and lead normal lives. Their website is professionally designed, multilingual, and optimized for SEO, featuring clear navigation and a donation system integrated with PayPal. The organization maintains a transparent presence with comprehensive contact information and social media links. Technically, the site is built on WordPress using modern themes and plugins, with good mobile optimization and privacy compliance via Usercentrics. Security posture is solid with HTTPS and secure forms, though some security headers and explicit policies could be improved. Overall, the website reflects a trustworthy and credible non-profit entity with a clear mission and effective digital presence.

P

Parallel Lifestyle

parallellifestyle.com

0

Parallel Lifestyle is a social enterprise and disability lifestyle brand focused on promoting disability inclusion and 'no limits living'. The organization hosts award-winning events such as Parallel Windsor and Purple Sock Day, aiming to support disabled, D/deaf, and neurodiverse individuals to live fully integrated lives in mainstream society. Their market position is that of a niche, socially driven entity with strong community and partner engagement. Technically, the website is built on Webflow with modern technologies including Google Tag Manager, jQuery, and accessibility tools like UserWay. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and explicit security policies. WHOIS data is unavailable, which reduces domain transparency and trust from a registration perspective. Overall, the website is professional, trustworthy, and compliant with privacy regulations, but could improve in security policy transparency and domain registration clarity.

E

Earthquake Engineering Research Institute

eeri.org

0

The Earthquake Engineering Research Institute (EERI) is a well-established non-profit organization dedicated to advancing earthquake resilience through multidisciplinary professional collaboration. The organization offers a variety of services including research publications, educational resources, professional development, and advocacy efforts. Their market position is strong as a leader in earthquake investigations and risk reduction information dissemination, targeting professionals and organizations in the earthquake engineering sector. The website reflects a mature digital presence with a membership portal and active social media engagement. Technically, the website is built on Joomla CMS with modern frameworks such as Helix Ultimate and Bootstrap 5, incorporating common libraries like jQuery and Font Awesome. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Hosting and domain registration are consistent with a legitimate, long-standing organization. From a security perspective, the site enforces HTTPS and uses domain status locks to protect domain integrity. However, it lacks DNSSEC, explicit security headers, and publicly available security or incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the security posture is solid but could be improved with additional best practices. The overall risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent for GDPR compliance, and publishing security policies to enhance trust and compliance.

I

Independent Evaluation Office (IEO) of the Global Environment Facility (GEF)

gefieo.org

0

The GEF Independent Evaluation Office (IEO) website serves as a professional platform providing independent evaluations and data-driven insights on environmental projects and programs under the Global Environment Facility. The site targets environmental professionals, policymakers, and global sustainability stakeholders, positioning itself as a trusted authority in environmental evaluation. The business model is non-profit, focusing on transparency, accountability, and advancing global environmental goals through rigorous assessments. The website is affiliated with the World Bank and GEF, enhancing its credibility and reach. Technically, the website is built on Adobe Experience Manager (AEM) and hosted within the World Bank's infrastructure, leveraging modern JavaScript libraries and third-party analytics tools such as LinkedIn Insight, Facebook SDK, and Adobe Helix RUM. The site demonstrates good performance, mobile optimization, and accessibility, with a well-structured content hierarchy and professional design. From a security perspective, the site enforces HTTPS and employs secure third-party scripts, though explicit security headers like Content-Security-Policy and X-Frame-Options are not visible in the HTML and should be verified server-side. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy linked to the World Bank domain, but the absence of a cookie consent mechanism is a gap for GDPR compliance. Overall, the website presents a low risk profile with strong business credibility and technical maturity. Recommendations include implementing explicit security headers, adding cookie consent mechanisms, and regular audits of third-party scripts to maintain security and compliance standards.

A

AFRICA&SPORT

africasport.it

0

AFRICA&SPORT is a small Italian non-profit organization dedicated to promoting social inclusion through sport activities both in Italy and African countries such as Ethiopia, Kenya, and Uganda. The organization engages communities by supporting projects that combine passion for sport with commitment to Africa. Their market position is niche, focusing on charitable and social initiatives with a clear target audience of socially conscious individuals and communities interested in sport and African development. Technically, the website is built on a modern Angular 14 framework, utilizing Google Fonts, Font Awesome, and embedded social media and video content from Facebook and YouTube. The site is hosted likely by Aruba.it and includes Google Analytics with IP anonymization. The website is moderately optimized for performance and mobile devices but lacks advanced accessibility features and comprehensive SEO optimization. From a security perspective, the site uses HTTPS with good SSL configuration but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There is no visible privacy policy, cookie consent mechanism, or incident response information, which are critical for GDPR compliance and user trust. The site does not expose sensitive data or show signs of vulnerabilities but would benefit from improved security best practices. Overall, AFRICA&SPORT presents a trustworthy and professional online presence for a small non-profit. However, it should prioritize implementing privacy and cookie policies, security headers, and incident response details to enhance compliance and security posture. These improvements will strengthen user trust and reduce potential risks associated with data protection and security.

R

run2gether - Laufurlaub Austria - Kenya

run2gether.com

0

run2gether is a non-profit organization focused on promoting running and social projects between Austria and Kenya. Founded in 2007, it offers running holidays, training camps, coaching, and supports social initiatives such as kindergartens and sponsorships in Kenya. The website is professionally designed, content-rich, and well-structured, targeting athletes, sports enthusiasts, and supporters of social causes. Technically, the site uses WordPress with WooCommerce, integrates Google Analytics and Tag Manager, and employs modern SEO and accessibility practices. Security posture is good with HTTPS and reCAPTCHA, though additional security headers could enhance protection. The absence of WHOIS domain registration data is a concern for domain legitimacy verification but does not detract from the evident authenticity of the organization's mission and online presence.

W

Winter Run

winterrun.co.uk

0

Winter Run is a non-profit fundraising platform supporting the Cancer Research UK London Winter Run event, a 10k running challenge through London landmarks. The website serves as a hub for participant registration, fundraising, and donation tracking, leveraging a modern technical infrastructure including jQuery, Bootstrap, and various JavaScript libraries. The site is hosted on Amazon Cloudfront CDN and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers and formal security policies are not published. Privacy compliance is well addressed with a clear cookie consent mechanism and a comprehensive privacy policy linked to Cancer Research UK's main site. WHOIS data for the exact domain is unavailable due to domain naming rules, indicating it is likely a subdomain or alias, but the website's branding and content strongly associate it with the reputable Cancer Research UK organization. Overall, the site is professional, trustworthy, and well-optimized for its audience.