Security Directory

E

European Civic Forum

civic-forum.eu

0

The European Civic Forum (ECF) is a well-established pan-European non-profit network comprising nearly 100 associations and NGOs across 29 countries. Founded in 2005, ECF focuses on protecting civic space, enabling civic participation, and fostering civil dialogue to promote equality, solidarity, and democracy in Europe. The website reflects a professional and consistent brand presence with comprehensive content about their advocacy, network, and monitoring activities. Technically, the site is built on WordPress using the Divi theme and several plugins, with good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent, though lacking some security headers and explicit security policies. Contact is primarily via forms, with no direct emails or phone numbers publicly listed. Overall, the site is credible and trustworthy, serving a specialized audience of civil society actors.

D

Dòng Phaolô Thiện Bản

phaolothienban.com

0

Dòng Phaolô Thiện Bản is a religious non-profit organization based in Vietnam, specializing in publishing, media, and spiritual education. The website serves as an informational and communication platform for the organization, providing access to books, podcasts, news, and community activities. The organization has historical roots dating back to 1873, with a Vietnamese branch established in 1974. The website is professionally designed with a clear structure and good user experience, targeting Vietnamese-speaking Catholic audiences and the broader religious community.

G

Global Landscapes Forum

globallandscapesforum.org

0

Global Landscapes Forum (GLF) is a prominent non-profit organization dedicated to fostering a global community focused on sustainable landscapes and ecosystem restoration. The website serves as a comprehensive platform offering knowledge sharing, events, educational courses, and community engagement tools. It is professionally designed, well-branded, and targets a diverse audience including environmental professionals, youth, NGOs, and policymakers. The affiliation with CIFOR - ICRAF adds credibility and institutional backing. Technically, the website is built on WordPress with modern tools such as Elementor, WP Rocket, and Google Tag Manager, ensuring good performance, SEO optimization, and mobile responsiveness. The use of CDN services and cookie consent mechanisms reflects a mature digital infrastructure. However, explicit security headers and published security policies are absent, indicating room for improvement in security transparency. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is basic with cookie consent but lacks detailed privacy or incident response policies. WHOIS data is unavailable, likely due to privacy protection, which is common for NGOs but reduces transparency. Overall, the website is trustworthy and professionally maintained with a strong focus on environmental restoration and education. Recommendations include enhancing security headers, publishing security and privacy policies, implementing vulnerability disclosure mechanisms, and improving WHOIS transparency to bolster trust and compliance.

C

CIFOR-ICRAF

cifor-icraf.org

0

CIFOR-ICRAF is a prominent non-profit international research organization focused on forestry, agroforestry, and landscape restoration to address global challenges such as climate change, biodiversity loss, and food security. The organization operates under the CGIAR umbrella and targets researchers, policymakers, and environmental stakeholders worldwide. Their website serves as a comprehensive knowledge hub offering publications, news, events, and multimedia resources. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and WHOIS transparency are lacking. Overall, the site is professional, trustworthy, and well-optimized for user experience and compliance, but would benefit from enhanced transparency in domain registration and contact information.

A

Avaaz

avaaz.org

0

Avaaz is a large, globally recognized non-profit organization focused on empowering people worldwide to engage in social and political activism through online petitions and campaigns. The website serves as a hub for community mobilization, offering multilingual support and interactive features such as live activity feeds and community maps. Technically, the site employs modern JavaScript libraries including jQuery, Leaflet, and GrowthBook, and integrates tracking and social media SDKs from Google and Facebook. The site is secured with HTTPS and demonstrates good privacy compliance with clear privacy and cookie policies aligned with GDPR standards. Security posture is solid with secure forms and encrypted connections, though explicit security headers could be improved. The WHOIS data is unavailable due to privacy protection and a malformed WHOIS query, which is typical for non-profits seeking to protect registrant privacy. Overall, Avaaz's website is professional, trustworthy, and well-optimized for user engagement and global outreach.

S

Stockholm International Water Institute

siwi.org

0

Stockholm International Water Institute (SIWI) is a well-established non-profit organization focused on water governance and sustainable water management. Founded in 1997, SIWI operates globally to influence policy and decision-making in water-related sustainable development. The website reflects a professional and consistent brand presence targeting policymakers, researchers, and water sector professionals. Technically, the site is built on WordPress with modern frameworks like Bootstrap and hosted on Microsoft Azure DNS infrastructure, indicating a moderate to good level of digital maturity. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and content-rich but would benefit from enhanced privacy and security disclosures.

Naturskyddsföreningen is Sweden's largest environmental non-profit organization dedicated to spreading knowledge, shaping public opinion, and influencing decision-makers at local, national, and global levels. The website reflects a mature digital presence with comprehensive content, including news, campaigns, educational materials, and event calendars. The organization leverages modern web technologies such as Next.js and React, hosted on Vercel, ensuring fast performance and mobile optimization. Security measures include HTTPS enforcement, security headers, and bot protection via reCAPTCHA, complemented by GDPR-compliant privacy and cookie policies. However, the absence of WHOIS domain registration data introduces a minor trust concern, though the website's certifications and transparent policies mitigate this risk. Overall, the site demonstrates high professionalism, trustworthiness, and user engagement.

S

Soeurs de Saint-Paul

soeurs-st-paul.ch

0

Soeurs de Saint-Paul is a well-established Catholic religious congregation founded in 1873 in Fribourg, Switzerland, with an international presence in several countries including Cameroon, Madagascar, Vietnam, and Burundi. The organization focuses on spiritual activities, charitable works, and community engagement, targeting religious communities and supporters. Their website reflects a professional and consistent brand image, providing multilingual content and clear contact information. Technically, the site is built on WordPress with modern JavaScript libraries and plugins, including Vue.js and Google reCAPTCHA for form security. While HTTPS is properly implemented, the site lacks explicit security headers and formal privacy and cookie policies, which are important for compliance and security posture. Analytics are managed via Google Analytics and Google Site Kit, indicating moderate user tracking. Overall, the website is functional, trustworthy, and well-positioned for its non-profit religious mission, but could improve in privacy compliance and security best practices.

S

ShareTheMeal

sharethemeal.org

0

ShareTheMeal is a well-established non-profit platform affiliated with the United Nations World Food Programme, focused on fighting global hunger through donations and fundraising campaigns. The website offers a professional, content-rich experience with clear calls to action for donations and detailed information about ongoing humanitarian projects worldwide. The platform supports multiple languages and is optimized for mobile and desktop users, reflecting a mature digital presence. Technically, the site uses modern frameworks such as Remix, integrates analytics tools like Amplitude and Firebase, and is hosted on AWS, ensuring reliability and performance. Security posture is strong with HTTPS enforced and multiple security headers present, although DNSSEC is not enabled and no visible cookie consent mechanism was detected, which could be improved for compliance. Overall, the domain registration is consistent with the organization's profile, showing a long-standing presence since 2012. The site is trustworthy, safe, and professionally managed, making it a credible platform for charitable donations.

Freerice.com is a well-established educational trivia platform owned by the United Nations World Food Programme (WFP). It leverages user engagement through a trivia game to support global hunger relief by donating rice for every correct answer. The website demonstrates a strong market position as a non-profit with UN affiliation, targeting a broad audience interested in education and social impact. Technically, the site is built on modern frameworks such as React and Next.js, hosted on AWS, and optimized for performance and mobile use. Security posture is solid with HTTPS and domain protections, though DNSSEC and additional security headers could enhance it further. Privacy compliance is moderate with a clear privacy policy but no visible cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

E

Europa in Movimento

europainmovimento.eu

0

Europa in Movimento is a small non-profit organization dedicated to promoting a federal, united, and peaceful Europe. The website serves as a platform for news, editorials, educational projects, and campaigns related to European integration and peace activism. It targets European citizens, activists, and educators interested in federalism and civic education. The site leverages Joomla CMS with Bootstrap and integrates social media extensively to engage its audience. Technical infrastructure is moderately modern with standard web technologies and Google Analytics for user tracking. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though security headers and explicit security policies are lacking. The website is accessible without any WAF or blocking mechanisms, and content is safe for general audiences. Overall, the site demonstrates a good balance of content quality, technical implementation, and business credibility for a non-profit advocacy platform.

C

Centro Studi sull'Unione Europea (CesUE)

cesue.eu

0

Centro Studi sull'Unione Europea (CesUE) is a small Italian non-profit organization focused on education, advocacy, and communication regarding the European Union, promoting federalism and European unity. The website serves as an information hub for European citizens interested in EU affairs, offering news, projects, and calls for common European defense. The organization partners with Euractiv Italia, enhancing its credibility and reach. Technically, the website is built on Joomla CMS with modern frameworks like Helix and Bootstrap, ensuring good mobile responsiveness and a moderate performance profile. The site uses HTTPS and implements a cookie consent mechanism, reflecting a basic but adequate privacy compliance posture. However, no advanced security headers or analytics tools were detected in the provided HTML, indicating room for improvement in security and data analytics. From a security perspective, the site is accessible without WAF or blocking mechanisms, uses HTTPS, and has no visible vulnerabilities or exposed sensitive data. The lack of public WHOIS data is due to EURid privacy policies, which is common and justified for this type of organization. Overall, the security posture is moderate with recommendations to enhance HTTP security headers and incident response transparency. The overall risk assessment is low, with the site appearing legitimate and professionally maintained. Strategic recommendations include improving security headers, publishing security policies, and enhancing contact transparency to strengthen trust and compliance.

U

UN World Food Programme (WFP)

wfp.org

0

The UN World Food Programme (WFP) is the world's largest humanitarian organization dedicated to saving lives in emergencies and providing food assistance to build peace, stability, and prosperity for populations affected by conflict, disasters, and climate change. The organization operates globally with a presence in over 120 countries and territories, offering a broad range of services including emergency relief, food assistance, supply chain management, and resilience building. Their business model is non-profit, relying heavily on donations and partnerships with governments, NGOs, and private sectors. The website reflects a strong market position as a leading humanitarian entity with extensive outreach and engagement capabilities. Technically, the website is built on Drupal CMS and employs a modern technology stack including Google Tag Manager, Google Analytics, TikTok Analytics, Facebook Pixel, Hotjar, and Bing Ads for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with fast to moderate performance. The use of multiple languages and comprehensive content demonstrates digital maturity and global accessibility. From a security perspective, the website enforces HTTPS, implements multiple security headers, and follows best practices for secure forms and data handling. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. However, the WHOIS data is not publicly available, likely due to privacy protection, which is justified given the organization's international and humanitarian nature. Overall, the WFP website is a highly professional, trustworthy, and secure platform that effectively supports the organization's mission. Strategic recommendations include maintaining regular security audits, monitoring third-party scripts, and establishing a public vulnerability disclosure policy to further enhance security posture and transparency.

I

Impact Hub GmbH

impacthub.net

0

Impact Hub GmbH operates a global network dedicated to fostering social impact through entrepreneurship, innovation, and collaboration. Established in 2005 and headquartered in Vienna, Austria, the organization connects impact makers, corporates, public sector entities, and entrepreneurs to build sustainable and inclusive ecosystems worldwide. Their services include collaborative spaces, memberships, ecosystem building, and partnership programs, positioning them as a key player in the non-profit social innovation sector. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and hosted with Cloudflare DNS services. The site demonstrates excellent performance, mobile optimization, and SEO practices, supported by structured data and a privacy-conscious analytics setup using PostHog with IP anonymization. From a security perspective, the site enforces HTTPS, uses domain transfer protection, and avoids exposing sensitive data. However, DNSSEC is not enabled, and explicit security headers are not clearly visible, indicating room for improvement. Privacy compliance is strong with comprehensive privacy and cookie policies and active consent mechanisms, aligning with GDPR requirements. Overall, the website presents a professional, trustworthy, and well-maintained digital presence with a high level of content quality and business credibility. Strategic recommendations include enabling DNSSEC, publishing explicit security and incident response policies, and adding a vulnerability disclosure framework to enhance security posture and stakeholder trust.

I

Inclusive Business Partners

inclusivebusiness.se

0

Inclusive Business Partners is a Sweden-based non-profit organization focused on empowering impact businesses and investors to create sustainable growth and lasting social and environmental impact. Established in 2013, the organization offers advisory services, project management, and network facilitation to startups, SMEs, donors, and investors globally. Their work aligns with the 17 Sustainable Development Goals and includes managing multiple international projects and partnerships. Technically, the website is built on WordPress using Elementor and includes modern features such as Google reCAPTCHA v3 for form security. The site is hosted by One.com and uses HTTPS, ensuring basic security standards. However, it lacks advanced security headers and explicit privacy and cookie policies, which are areas for improvement. Contact information is comprehensive, including multiple emails, phone number, physical address, and social media links, enhancing business credibility. Overall, the website presents a professional and trustworthy image with a strong network presence but should enhance privacy compliance and security practices.

F

Föreningen för utvecklingsfrågor

fuf.se

0

Föreningen för utvecklingsfrågor (FUF) is a well-established Swedish non-profit organization dedicated to knowledge sharing, debate, and engagement on global development and sustainability issues. The website serves as a platform for articles, reports, events, and educational programs targeting academics, students, professionals, and organizations interested in international development. With over 50 years of history, FUF holds a strong market position in Sweden's development discourse. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates various plugins for enhanced user experience, including social media feeds and sliders. Hosting is provided by Loopia AB, a reputable Swedish registrar and hosting provider. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be improved. From a security perspective, the site uses HTTPS and implements basic security best practices such as cookie consent and safe external link attributes. However, DNSSEC is not enabled, and some security headers like Content Security Policy are missing. There is no visible security policy or vulnerability disclosure page, which could be areas for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it lacks explicit terms of service and direct contact emails or phone numbers. The domain registration is consistent with the organization's profile, enhancing legitimacy. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing a security policy to strengthen security posture and user trust.

W

We Effect

weeffect.se

0

We Effect is a Swedish non-profit organization dedicated to combating global hunger and poverty through cooperative development and sustainable agriculture. The organization operates in 19 countries, focusing on empowering farmers and housing cooperatives with an emphasis on gender equality and climate justice. Their business model relies on donations, monthly giving, corporate partnerships, and a gift shop. The website is professionally designed, content-rich, and well-structured, targeting donors, supporters, and cooperative organizations worldwide. Technically, the website is built on WordPress with WooCommerce, utilizing modern JavaScript modules, jQuery, and integrates Google Tag Manager and Sentry for analytics and error monitoring. The site is mobile-optimized, accessible, and SEO-friendly, with good performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers could be improved. No WAF or blocking mechanisms were detected, and the site shows strong trust indicators including certifications and clear contact information. WHOIS data for the www subdomain was not found, likely due to querying a subdomain rather than the registered domain, but the overall legitimacy of the organization is supported by the website content and certifications. Overall, We Effect presents a trustworthy, professional, and well-maintained online presence that effectively supports its mission and engages its audience.

Y

YPARD e.V

ypard.net

0

YPARD e.V is a registered non-profit organization based in Berlin, Germany, focused on empowering and connecting young professionals in agri-food systems worldwide. The organization operates as an international movement providing advocacy, capacity building, and networking services to youth engaged in agricultural development. With a global presence spanning over 50 countries and a network reach exceeding 32,000 individuals, YPARD positions itself as a key player in youth-led sustainable agri-food transformation. The website reflects a professional and well-structured platform that supports its mission through events, projects, and partnerships. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies such as Google Fonts, Google Tag Manager, and Cookiebot for cookie consent management. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be enhanced. Performance is moderate, with no critical technical issues detected. However, the absence of explicit security headers and detailed hosting information suggests room for improvement in technical security hardening. From a security perspective, the site uses HTTPS as implied by included scripts, and employs Cookiebot for GDPR-compliant cookie consent. However, no privacy policy or terms of service pages were found, and no incident response or vulnerability disclosure information is provided. The WHOIS data is notably absent or inaccessible, raising concerns about domain registration legitimacy despite the professional appearance and active social media presence. This discrepancy warrants further verification to ensure domain ownership transparency. Overall, YPARD's website is a credible and professional platform serving a niche non-profit community. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, verifying domain registration details, and improving accessibility compliance to strengthen trust and compliance posture.

S

Stockholm Environment Institute

sei-international.org

0

Stockholm Environment Institute (SEI) is an established international non-profit research institute focused on environmental and sustainable development challenges. The organization operates multiple global centers and provides research, policy analysis, data tools, and events to influence sustainability practices worldwide. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding. Technically, the site is built on WordPress with modern SEO and analytics tools, ensuring good performance and accessibility. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, SEI presents a trustworthy and credible online presence aligned with its mission and audience.

F

Focali

focali.se

0

Focali is a well-established non-profit research network focused on bridging forest, climate, and livelihood research with policy and practice since 2008. The organization serves as a multidisciplinary platform for researchers, policymakers, and practitioners addressing complex environmental and social challenges. Their website, hosted on Squarespace, reflects a professional and consistent brand with good content quality and user experience. However, the absence of WHOIS data and domain registration details introduces some uncertainty about domain legitimacy. The site lacks explicit privacy and cookie policies, which are critical for compliance with GDPR and other privacy regulations. Social media presence is strong, supporting community engagement and outreach. Technically, the site benefits from HTTPS and HSTS but could improve security headers and privacy compliance. Overall, Focali presents a credible and professional front but should address privacy and WHOIS transparency to enhance trust.

S

Swedish International Agriculture Network Initiative

siani.se

0

The Swedish International Agriculture Network Initiative (SIANI) operates as a global, open, and inclusive non-profit network dedicated to fostering dialogue, engagement, and knowledge sharing around sustainable, rights-based, and inclusive food systems. The organization targets researchers, policymakers, practitioners, and stakeholders interested in sustainable agriculture and food security. SIANI offers services including expert groups, events, publications, and impact stories, positioning itself as a key player in the global sustainable agriculture and food security ecosystem. Technically, the website is built on WordPress and leverages modern web technologies such as jQuery, Google Analytics, Google Tag Manager, Hotjar, and Facebook Pixel, integrated with a GDPR-compliant cookie consent mechanism via Iubenda. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent for tracking scripts, but lacks explicit security headers and a public security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the www subdomain is noted but does not detract from the overall legitimacy given the strong partner ecosystem and professional presentation. Overall, SIANI presents a low-risk profile with a strong compliance posture and professional digital presence. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure mechanism to further strengthen trust and security posture.

S

Svensk Insamlingskontroll

insamlingskontroll.se

0

Svensk Insamlingskontroll is a well-established Swedish non-profit organization dedicated to overseeing and certifying 90-konton, which are special fundraising accounts ensuring that donated funds are used appropriately. With over 80 years of history, the organization holds a trusted market position in Sweden, providing annual audits and controls to maintain donor confidence. Their website reflects a professional and transparent approach, offering detailed information for donors and organizations, and facilitating communication through contact forms and clear contact details. Technically, the website is built on WordPress with modern plugins such as Gravity Forms and Yoast SEO, ensuring good SEO, accessibility, and user experience. The site uses HTTPS and includes a cookie consent mechanism compliant with GDPR, indicating a mature digital infrastructure. Performance is moderate with good mobile optimization and accessibility features. From a security perspective, the site enforces HTTPS and uses anti-spam measures in forms but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the www subdomain is noted but does not detract from the overall legitimacy of the organization. Overall, Svensk Insamlingskontroll presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a security.txt file to improve vulnerability disclosure and incident response readiness.

V

Vi Agroforestry

viagroforestry.org

0

Vi Agroforestry is a well-established Swedish non-profit organization dedicated to fighting poverty and climate change through agroforestry and sustainable agriculture in East Africa. The website reflects a mature and professional digital presence with comprehensive content about their projects, impact, and ways to engage. Their market position is strong within the non-profit development sector, supported by a history dating back to 1983 and certifications such as the Swedish Fundraising Control. Technically, the site is built on WordPress with modern JavaScript frameworks, Google Analytics, and Tag Manager integrations, providing good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement by adding security headers and publishing security policies. Overall, the site is trustworthy, transparent, and compliant with privacy regulations, though WHOIS data is unavailable, likely due to privacy protection. Strategic recommendations include enhancing security transparency and incident response readiness.

C

Campact e.V.

campact.de

0

Campact e.V. is a prominent German non-profit campaigning organization that mobilizes over 4.25 million supporters to advocate for progressive political causes and defend democracy. The organization operates multiple digital platforms including petition hosting, donation management, and newsletters, reflecting a mature digital presence. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO and Piwik PRO, ensuring good performance, mobile optimization, and privacy compliance. Security posture is strong with HTTPS enforced and consent management implemented, though some security headers could be improved. Overall, the site is professional, trustworthy, and transparent, with clear calls to action and extensive social media integration.

I

Internet Watch Foundation

iwf.org.uk

0

The Internet Watch Foundation (IWF) is a UK-based non-profit charity dedicated to eliminating online child sexual abuse imagery. Established in 1996, it operates a trusted anonymous reporting hotline and collaborates with businesses and governments to identify and remove harmful content from the internet. The organization holds a strong market position as a leading authority in online child protection and abuse prevention. Technically, the IWF website is built on the Umbraco CMS platform, utilizing modern web technologies such as Typekit fonts, Cookiebot for consent management, and Google Tag Manager for analytics. The site demonstrates good performance, mobile optimization, and accessibility standards, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS, employs security headers, and integrates cookie consent mechanisms, indicating a solid security posture. However, explicit security policies and incident response information are not publicly available, suggesting room for improvement in transparency and preparedness. Overall, the IWF website is professional, trustworthy, and compliant with privacy regulations such as GDPR. The absence of WHOIS data is due to an invalid query format rather than privacy protection, and does not detract from the organization's legitimacy. Strategic recommendations include publishing detailed security policies, vulnerability disclosure procedures, and data protection officer contacts to enhance trust and compliance.

D

Digitalcourage e.V.

digitalcourage.social

0

Digitalcourage.social is a privacy-focused Mastodon instance operated by the German non-profit Digitalcourage e.V. It provides decentralized social media access to users committed to social activism and privacy, charging a modest annual prepaid fee to sustain operations. The platform emphasizes respectful community interaction and strong data protection principles, including shielding user IP addresses from moderators. Technically, the site runs Mastodon version 4.4.5 with modern JavaScript frameworks like React, and integrates with ActivityPub relays to enhance federation. Security posture is solid with HTTPS and privacy best practices, though some security headers and cookie consent mechanisms could be improved. WHOIS data is privacy protected but consistent with the organization's profile. Overall, the site is trustworthy, professional, and well-aligned with its mission.

V

Vi-skogen

viskogen.se

0

Vi-skogen is a Swedish non-profit organization dedicated to planting trees and promoting agroforestry in East Africa to combat poverty and climate change. The website is professionally designed, content-rich, and targets donors, companies, and the general public interested in environmental and social causes. The organization offers donation options, educational content, and impact stories to engage supporters. Technically, the site is built on WordPress with WooCommerce and Gravity Forms, integrating modern analytics and tracking tools such as Google Tag Manager and Facebook Pixel. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although no explicit security policy or incident response information is published. Privacy compliance is well addressed with cookie consent and a comprehensive privacy policy. WHOIS data for the exact queried subdomain is unavailable, but the main domain is presumed legitimate. Overall, the site demonstrates a mature digital presence with good security and privacy practices, supporting its mission effectively.

I

Internet Archive

archive.org

0

Internet Archive is a well-established non-profit digital library founded in 1995, providing free universal access to a vast collection of texts, movies, music, and archived web pages through its Wayback Machine. It holds a leading position in the digital archive space, serving a general audience with a mission to preserve digital content for public access. The website's business model is donation-supported, as evidenced by the donation iframe embedded in the homepage. Technically, the website employs modern web technologies including JavaScript frameworks such as Lit and React, and uses web components for modular UI. The presence of Cloudflare secondary DNS servers suggests a robust DNS infrastructure, although DNSSEC is not enabled. The site is mobile optimized and SEO friendly, with Google site verification meta tags confirming ownership. Performance is moderate, with no critical technical debt observed in the snapshot. From a security perspective, the site uses HTTPS and domain status flags to protect domain integrity. However, no explicit security headers were detected in the HTML content, and DNSSEC is not enabled, representing areas for improvement. No vulnerabilities or exposed sensitive data were found. Privacy compliance is limited as no privacy or cookie policies were found in the provided content, which is a gap for GDPR and other regulations. Overall, the Internet Archive website is trustworthy, professional, and technically sound, with a strong business credibility score. Strategic recommendations include publishing clear privacy and cookie policies, enabling DNSSEC, and adding security headers to enhance security posture and compliance.

G

Giant Rabbit LLC

giantrabbit.com

0

Giant Rabbit LLC is a specialized digital agency focused on developing and supporting websites and data systems for nonprofit organizations. Established in 2003, the company offers a comprehensive suite of services including strategy, design, development, CRM selection and data migration, fundraising analytics, Drupal upgrades, project rescues, managed hosting, support, maintenance, and security. Their market position is niche, targeting nonprofits with pragmatic and mission-focused digital solutions. The website reflects a professional and consistent brand with clear service offerings and contact information. Technically, the website is built on Drupal 10, leveraging modern JavaScript and integrates Google Analytics and Google Tag Manager for tracking. Hosting and DNS services are provided via Amazon AWS infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. The absence of DNSSEC and security headers indicates room for improvement in security hardening. From a security perspective, the site uses HTTPS and domain registration protections but lacks published security policies, incident response information, and cookie consent mechanisms, which are important for GDPR compliance and user trust. No critical vulnerabilities or exposed sensitive data were detected. Overall, the security posture is moderate but could be enhanced with additional policies and technical controls. The overall risk assessment is low with recommendations to enable DNSSEC, implement cookie consent, publish security and incident response policies, and add security headers. These steps will improve compliance, user trust, and reduce potential attack surface.

Kombispel i Sverige AB operates kombispel.se, a Swedish non-profit lottery platform established since 1956, offering lottery games that support drug prevention initiatives. The website targets adult Swedish users interested in lotteries and provides multiple lottery options with monthly prizes. The business is well-positioned nationally, regulated by Swedish authorities, and emphasizes responsible gaming. Technically, the site uses a modern Microsoft ASP.NET Core stack hosted on Microsoft Azure, with Umbraco CMS and integrates analytics and marketing tools such as Google Analytics, Google Tag Manager, Hotjar, and Facebook marketing pixels. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS, session management, and anti-forgery protections, though some security headers could be improved. Privacy compliance is robust with detailed cookie consent and GDPR-aligned policies. Contact information is transparent and professional. Overall, the site is trustworthy and professionally maintained.

N

Noyb - European Center for Digital Rights

noyb.eu

0

Noyb - European Center for Digital Rights is a Vienna-based non-profit organization dedicated to enforcing digital privacy rights under GDPR. The website serves as a platform for advocacy, legal case updates, and public education, positioning Noyb as a leading European privacy watchdog. Their business model centers on legal enforcement, supported by memberships and donations. Technically, the site is built on Drupal 10 with the Thunder distribution, hosted by hosttech GmbH, reflecting a modern and secure infrastructure. The website is well-designed, mobile-optimized, and accessible, with strong SEO and content quality. Security posture is solid with HTTPS and secure forms, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is good, with a clear privacy policy but lacking a cookie consent mechanism. Overall, the site is trustworthy, professional, and focused on privacy advocacy.

A

AITO Ukraine

aitoukraine.org

0

AITO Ukraine is a small non-profit organization based in Kyiv, Ukraine, focused on community engagement and information dissemination. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies such as HTML5, CSS3, and JavaScript. The site presents basic content with consistent branding and moderate technical maturity. Security posture is adequate with HTTPS enabled and some script-based security hardening, but lacks important security headers and formal privacy or cookie policies. WHOIS data is unavailable or malformed, limiting domain trust verification. Overall, the website is functional and safe but requires improvements in privacy compliance and contact transparency to enhance trust and security.

F

Fight Chat Control

fightchatcontrol.eu

0

Fight Chat Control is a citizen-led advocacy platform focused on opposing the EU's Chat Control proposal, which mandates scanning of all private digital communications including encrypted messages and photos. The website serves as an informational resource and a tool for EU citizens to contact their representatives to protect digital privacy and encryption rights. The platform positions itself as a non-profit entity advocating for fundamental privacy rights within the European Union. Technically, the website is built with standard web technologies including HTML5, CSS3, and JavaScript, without reliance on a CMS or complex frameworks. The site is mobile-optimized and accessible, with a clear navigation structure and multilingual support. However, there is no evidence of advanced analytics, tracking, or advertising technologies, reflecting a privacy-conscious design. From a security perspective, the site lacks explicit security headers and published security policies or incident response contacts. No cookie consent mechanism is present, which may impact compliance with EU regulations. The absence of contact information and vulnerability disclosure policies limits transparency. Nevertheless, the site is served over HTTPS and does not exhibit signs of WAF blocking or malicious content. Overall, the website presents a low-risk profile with a focus on advocacy and information dissemination. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security and incident response policies, and providing clear contact information to improve trust and compliance.

C

Codeberg e.V.

codeberg.org

0

Codeberg e.V. operates a non-profit, community-driven platform providing free Git hosting and related services to support free and open source software projects. Founded in 2018 and based in Berlin, Germany, Codeberg positions itself as a privacy-respecting alternative to commercial code hosting platforms, emphasizing no tracking, no third-party cookies, and user data protection. The platform is powered by Forgejo, a fork of Gitea, with custom modifications to suit community needs. Technically, the website demonstrates a modern and performant infrastructure using open source technologies such as Forgejo, JavaScript, and SVG graphics. The site is mobile optimized, accessible, and SEO friendly, with fast load times and a clean design. The domain registration is consistent with the organization's history and location, and the site uses HTTPS with a valid SSL configuration. However, DNSSEC is not enabled, and some security headers are missing, which could be improved. From a security perspective, Codeberg shows a strong commitment to privacy and security best practices, including CSRF protection and client transfer domain lock. There is no evidence of tracking or advertising, and the site provides clear channels for abuse reporting. While no formal security policy or vulnerability disclosure page is found, the organization maintains transparency and community engagement. Overall, Codeberg presents a trustworthy, professional, and privacy-conscious platform with a solid technical foundation and a clear mission to support the open source community. Strategic improvements in security headers, DNSSEC, and formal security documentation would further enhance its security posture and compliance.

T

Trippelskrapet

trippelskrapet.se

0

Trippelskrapet is a Swedish subscription lottery operated on behalf of Pensionärernas Riksorganisation (PRO), offering participants the chance to win up to 3 million SEK. The business model is centered on lottery ticket sales with proceeds benefiting a non-profit organization focused on pensioners. The website is well-branded, professionally designed, and provides clear information about the lottery, prizes, and how proceeds are used. It targets pensioners and lottery players in Sweden, maintaining a strong market position within its niche. Technically, the website is hosted on Microsoft Azure and built using ASP.NET Core with Umbraco CMS components. It employs modern web technologies including jQuery and Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with a comprehensive cookie consent mechanism that complies with GDPR requirements. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. However, DNSSEC is not enabled, and security headers are not explicitly detected, representing areas for improvement. No explicit security policy or incident response contacts are published. The privacy and cookie policies are comprehensive and clearly linked, supporting good privacy compliance. Overall, Trippelskrapet presents a trustworthy and professional online presence with a solid security posture and compliance framework. Strategic enhancements in DNS security and published security policies would further strengthen its security maturity and stakeholder trust.

P

Pensionärernas riksorganisation

pro.se

0

PRO (Pensionärernas riksorganisation) is a well-established Swedish non-profit organization focused on improving the lives of pensioners through community engagement, advocacy, and member services. The website reflects a mature digital presence with a professional design, clear navigation, and relevant content targeted at Swedish retirees. The organization offers a variety of services including membership benefits, educational opportunities, and a popular pensioners' magazine. Technically, the site is built on the SiteVision CMS platform, utilizing modern JavaScript frameworks such as React and jQuery, and demonstrates good mobile optimization and accessibility. Security posture is moderate with cookie consent mechanisms in place but lacks explicit security policies and advanced DNS security features like DNSSEC. WHOIS data confirms the domain's legitimacy and long-standing presence since 1997, consistent with the organization's profile. Overall, the website is trustworthy, compliant with GDPR, and provides a positive user experience for its target audience.

L

Latvijas SOS Bērnu ciematu asociācija

sosbernuciemati.lv

0

Latvijas SOS Bērnu ciematu asociācija is a Latvian non-profit organization established in 1997, dedicated to creating and supporting SOS families for children without parental care and assisting families in crisis through support centers. The organization operates primarily in Latvia and targets children in need, families facing crises, and donors interested in charitable giving. The website reflects a professional and consistent brand image with good content quality and relevant information about its mission and services. Technically, the site employs modern web technologies including Google Tag Manager, reCAPTCHA, and Cookiebot for cookie consent, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and security best practices observed, though explicit privacy and terms of service policies are not found, representing an area for improvement. Overall, the site is trustworthy, safe, and compliant with basic privacy mechanisms, but could enhance transparency and user trust by publishing detailed privacy and security policies and providing clear contact information.

S

Schweizerischer Konsumentenbund

konsumentenbund.ch

0

The Schweizerischer Konsumentenbund website serves as the digital presence of a Swiss consumer protection organization focused on providing advice, advocacy, and information to consumers in Switzerland. The site is built on a WordPress platform using Elementor for design and Yoast SEO for search engine optimization, indicating a moderate level of digital maturity. The technical infrastructure is standard for non-profit organizations, with performance and mobile optimization rated as moderate to good. Security posture is limited based on the available data, with no explicit security headers or policies detected, and no visible privacy or cookie policies, which are critical for compliance and user trust. The absence of incident response and vulnerability disclosure information suggests room for improvement in security readiness. Overall, the website is professional and trustworthy in its business presentation but requires enhancements in privacy, security, and compliance to meet modern standards.

T

Traegerverein iPunkt

ipunkt.swiss

0

iPunkt is a Swiss non-profit organization focused on promoting workplace inclusion for people with disabilities through its unique Label iPunkt certification. The website serves as an information and engagement platform for companies interested in inclusive employment practices. The organization is relatively new, founded in 2023, and targets Swiss companies aiming to improve diversity and inclusion. The site offers certification details, consulting services, an employer network, and event information. Technically, the website uses a custom CMS with common JavaScript libraries like jQuery and Fancybox, and it is hosted under a Swiss registrar with DNS hosted by metanet.ch. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Security posture is moderate; HTTPS is enabled with anonymized Google Analytics tracking, but the domain is currently expired and DNSSEC is not enabled, which poses risks. No advanced security headers or explicit security policies are published. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional but requires urgent domain renewal and security improvements to mitigate risks.

L

Lasten ja nuorten saatio

tet.fi

0

TET.fi is a Finnish non-profit organization focused on connecting young people with employers to facilitate work experience opportunities. Established in 2013, it operates under the organization Lasten ja nuorten saatio, serving primarily youth and employers in Finland. The website is multilingual, supporting Finnish, Swedish, and English, enhancing accessibility for diverse users. The platform provides resources and services aimed at preparing youth for future working life, positioning itself as a trusted intermediary in the Finnish youth employment ecosystem. Technically, the website is built on WordPress, leveraging modern web technologies including jQuery and Google Tag Manager for analytics. Hosting appears to be managed by Cloudpit, inferred from nameservers. The site demonstrates good mobile optimization and SEO practices, with clear navigation and professional design. Security posture is solid with HTTPS enforced and standard security headers present, though DNSSEC is not implemented and no explicit security or incident response policies are published. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, the domain registration data aligns well with the website's claims, showing transparency and legitimacy. The site is free from adult or questionable content, targeting a general audience focused on youth employment. Strategic recommendations include implementing DNSSEC, publishing security policies, and establishing a vulnerability disclosure process to further enhance trust and security.

T

The Rockefeller Foundation

rockefellerfoundation.org

0

The Rockefeller Foundation is a well-established philanthropic organization dedicated to promoting the well-being of humanity through innovative solutions, partnerships, and grantmaking. With a history dating back to 1913, it holds a strong market position as a global non-profit leader focused on health, food security, energy, economic equity, and innovation. The website reflects a professional and comprehensive digital presence, featuring rich multimedia content, clear navigation, and consistent branding that aligns with its mission. Technically, the site is built on WordPress and leverages modern web technologies including jQuery, Google Tag Manager, New Relic monitoring, and various analytics tools. It is optimized for performance and mobile responsiveness, with good accessibility and SEO practices. Security posture is strong with HTTPS enforced and use of monitoring tools, though explicit security headers and a public security policy could enhance trust further. Overall, the site demonstrates a mature security and privacy compliance stance, including comprehensive privacy and cookie policies with consent mechanisms. The absence of WHOIS data is attributed to privacy protection, which is justified for this type of organization. No critical vulnerabilities or suspicious indicators were found, supporting a high trustworthiness rating. Strategically, the foundation should consider publishing explicit security policies and vulnerability disclosure information to further enhance transparency and security culture. Continued investment in technical modernization and privacy compliance will support its mission and stakeholder trust.

S

Software Freedom Conservancy

giveupgithub.org

0

Software Freedom Conservancy is a well-established non-profit organization founded in 2008 that provides legal, advocacy, and infrastructure support to Free, Libre, and Open Source Software (FLOSS) projects. Their website prominently features the 'Give Up GitHub' campaign, urging FOSS developers to move away from proprietary platforms. The organization targets FOSS developers, community leaders, and supporters of software freedom. Their business model is centered on non-profit advocacy and community support, positioning them as a trusted leader in the open source ecosystem. Technically, the website is built with standard web technologies including HTML5, CSS (using Tachyons), and JavaScript. It is hosted via Gandi SAS and uses HTTPS, but lacks advanced security headers and cookie consent mechanisms. The site is mobile optimized and accessible, with good SEO practices. No major performance issues were detected. From a security perspective, the site uses HTTPS but does not implement DNSSEC or security headers such as CSP or HSTS. There is no published security policy, incident response contact, or vulnerability disclosure program. No tracking or advertising scripts were detected, indicating a privacy-conscious approach. The WHOIS data is consistent with the organization's identity and domain age, supporting legitimacy. Overall, the website is professional, trustworthy, and focused on advocacy without commercial distractions. Security posture is adequate but could be improved with additional headers and policies. Privacy compliance is basic, with a privacy policy present but no cookie consent. The site is safe for general audiences with no adult or questionable content.

I

International Association of Better Business Bureaus

bbb.org

0

The Better Business Bureau (BBB) is a well-established non-profit organization dedicated to fostering trust between consumers and businesses across the United States and Canada. The website serves as a comprehensive platform for business accreditation, consumer complaint resolution, scam reporting, and educational resources. It targets both consumers seeking trustworthy businesses and businesses aiming to demonstrate credibility through BBB accreditation. The BBB holds a strong market position as a leading consumer protection entity with a large footprint and recognized brand. Technically, the website employs modern web technologies including React, Google reCAPTCHA Enterprise, and Google Maps API, hosted likely behind Cloudflare for performance and security. The site is well-optimized for mobile devices, accessible, and SEO-friendly, providing a fast and professional user experience. Integration with multiple trusted external services and social media platforms enhances its digital maturity. From a security perspective, the site enforces HTTPS, uses anti-bot measures, and appears to follow best practices for secure forms and data handling. While explicit security headers are not fully visible in the provided data, the overall posture is strong with no evident vulnerabilities or exposed sensitive information. Privacy compliance is robust, with clear privacy and cookie policies, including GDPR considerations. Overall, the BBB website demonstrates a high level of professionalism, trustworthiness, and technical sophistication. The absence of WHOIS data is consistent with privacy protection norms for large organizations and does not detract from the site's legitimacy. Strategic recommendations include enhancing transparency around security policies and incident response contacts to further strengthen trust.

H

Hrvatska udruga za odnose s javnošću

huoj.hr

0

Hrvatska udruga za odnose s javnošću (HUOJ) is a Croatian non-profit professional association dedicated to public relations and communication experts. It focuses on education, professional development, member information, and enhancing the standards and reputation of the PR profession in Croatia. The website serves as a portal for news, projects, membership information, and events, positioning HUOJ as a leading organization in its sector. Technically, the site is built using modern JavaScript frameworks Vue.js and Nuxt.js, with good mobile optimization and moderate performance. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though no explicit security or incident response policies are published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

H

Hrvatsko dizajnersko društvo / Croatian Designers Association

dizajn.hr

0

Hrvatsko dizajnersko društvo (Croatian Designers Association) is a non-profit organization dedicated to promoting design culture, education, exhibitions, and discourse in Croatia. The website serves as a portal for design professionals, students, and enthusiasts, providing information on events, workshops, publications, and membership. It holds a reputable position in the Croatian design community, supported by government and cultural sponsors, and is a member of international design associations.

S

Schweizer Bauernverband

sbv-usp.ch

0

The Schweizer Bauernverband (SBV) is the umbrella organization representing Swiss agriculture, focusing on supporting farming families through advocacy, market information, communication, and various services. The website reflects a well-established non-profit entity with a clear market position as the leading agricultural association in Switzerland. It offers comprehensive services including labor mediation, statistical publications, and policy guidance. The digital presence is mature, leveraging TYPO3 CMS, modern web technologies, and structured data to enhance SEO and user experience. Social media integration and multilingual support further demonstrate digital maturity. From a security perspective, the site employs HTTPS with good SSL configuration and includes cookie consent mechanisms, indicating compliance with privacy regulations such as GDPR. However, there is no explicit security policy or incident response information published, and security headers appear to be missing or not detected, which could be improved. No vulnerabilities or suspicious content were found, and the WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, the website is professional, trustworthy, and serves its audience effectively, though it could benefit from enhanced security disclosures and technical hardening. The risk profile is low, with no critical issues detected, making it a reliable source for stakeholders in Swiss agriculture.

F

Free Software Foundation, Inc.

defectivebydesign.org

0

Defective by Design is a grassroots campaign operated by the Free Software Foundation, focused on opposing Digital Rights Management (DRM) technologies that restrict user freedoms. The website serves as an advocacy platform providing educational content, action alerts, and fundraising opportunities to support their mission. Their market position is niche within the free software and digital rights community, targeting computer users and activists concerned with digital freedom. The business model is non-profit and donation-driven, emphasizing transparency and community engagement. Technically, the website is built on Drupal 7 with jQuery and Flexslider for UI components, and uses Matomo for privacy-respecting analytics. The site is mobile optimized and accessible, with good SEO practices. However, the CMS version is somewhat dated, which may pose future maintenance and security challenges. Performance is moderate, with no major issues detected. From a security perspective, the site enforces HTTPS and uses secure forms but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were found in the content. Privacy compliance is partial; a privacy policy exists but is hosted on a related FSF domain, and no cookie consent mechanism is present. WHOIS data is unavailable, limiting domain trust verification, but the affiliation with the Free Software Foundation and consistent content supports legitimacy. Overall, the website is professional, trustworthy, and aligned with its advocacy mission. Strategic improvements include adding a cookie policy with consent, publishing security and incident response information, and enhancing security headers to strengthen the security posture and privacy compliance.

F

Free Software Foundation Europe

fsfe.org

0

The Free Software Foundation Europe (FSFE) is a well-established non-profit organization founded in 2001, dedicated to advocating for software freedom and empowering users to control technology. The website serves as a comprehensive platform for news, events, campaigns, and community engagement related to free software in Europe. It targets users, contributors, and policy stakeholders interested in digital rights and software freedom. The organization operates with a clear mission and maintains a consistent brand presence with multilingual support and community testimonials. Technically, the website employs a modern yet somewhat dated technology stack including jQuery, Modernizr, and Bootstrap 3. It is hosted under the registrar Gandi SAS and shows moderate performance with good mobile optimization and accessibility. The site lacks a CMS indication, suggesting a custom or static site approach. SEO and metadata are well implemented with comprehensive Open Graph and Twitter card tags. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy, though no cookie consent mechanism was found. Contact is primarily via forms and a contact page, with no direct emails or phone numbers publicly listed. Social media presence is limited but includes Mastodon and Peertube. Overall, FSFE's website demonstrates a high level of professionalism, trustworthiness, and content quality suitable for its non-profit advocacy role. Recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and publishing explicit security and incident response policies to further enhance trust and compliance.

S

Software Freedom Conservancy

sfconservancy.org

0

Software Freedom Conservancy is a small, established non-profit organization dedicated to promoting and defending free and open source software rights, including copyleft compliance and software freedom. Their services include legal defense, community support, internships, and advocacy initiatives. The website reflects a mature and consistent brand with excellent content quality and user experience. Technically, the site uses standard web technologies and is hosted via Gandi SAS, with good mobile optimization and SEO. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the organization's history, supporting legitimacy and trustworthiness.

C

CARE

care.org

0

CARE is a globally recognized non-profit humanitarian organization dedicated to fighting global poverty and world hunger, with a strong focus on empowering women and girls. The organization operates at a large scale with a well-established brand and a comprehensive portfolio of services including emergency response, health, nutrition, and development programs. Their website reflects a mature digital presence with professional design, clear navigation, and extensive content relevant to their mission and audience. Technically, the site leverages modern web technologies and analytics tools such as Google Tag Manager, Hotjar, and Facebook Pixel, integrated within a WordPress CMS framework. Security measures are robust, featuring HTTPS, security headers, and reCAPTCHA protections, although explicit security policy documentation is not publicly found. Overall, CARE demonstrates a strong security posture and compliance with privacy regulations including GDPR. The domain WHOIS data is privacy protected but consistent with a legitimate, longstanding organization. Strategic recommendations include enhancing transparency around security policies and incident response, and continuous monitoring of third-party scripts to maintain security integrity.