Security Directory

F

FIN (Vereniging van Fondsen in Nederland)

fondseninnederland.nl

0

FIN (Vereniging van Fondsen in Nederland) is a Dutch non-profit association representing over 365 philanthropic funds and foundations dedicated to societal improvement. The organization provides advocacy, quality enhancement, knowledge exchange, and governance standards to its members. The website reflects a professional and consistent brand presence targeting philanthropic organizations and stakeholders in the Netherlands. Technically, the site is built on a Laravel framework with Livewire components, uses modern web technologies, and integrates Google Tag Manager and reCAPTCHA for analytics and security. Security posture is strong with HTTPS, DNSSEC, CSRF protections, and no visible vulnerabilities, although some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, supporting user consent mechanisms. Overall, the site is trustworthy, well-maintained, and aligned with its business purpose.

A

Accrisoft Corporation

accrisoft.com

0

Accrisoft Corporation operates a professional SaaS platform named Accrisoft Freedom, targeting non-profit organizations such as chambers of commerce, REALTOR associations, and community centers. The company provides a comprehensive suite of cloud-based software solutions including website design, membership management, event registration, finance, sales, and marketing applications. Their market position is specialized and focused on delivering industry-specific expertise to help organizations grow and thrive. Technically, the website employs a mature technology stack with jQuery, Flickity, Fancybox, Google reCAPTCHA, Hotjar, HubSpot, and other modern tools. The site is well-optimized for mobile and accessibility, with good SEO practices and a professional design. Analytics and marketing tools are extensively used, indicating a data-driven approach to customer engagement. From a security perspective, the site enforces HTTPS and uses bot protection and accessibility compliance tools. However, it lacks visible HTTP security headers and a published security policy or incident response contact, which are recommended for enhanced trust and compliance. The absence of WHOIS registration data is a notable concern, reducing domain trustworthiness despite the professional appearance and content of the website. Overall, Accrisoft presents a credible and professional online presence with strong business and technical foundations. Addressing WHOIS transparency and enhancing security disclosures would further strengthen their trust profile and compliance posture.

T

The Hilti Foundation

hiltifoundation.org

0

The Hilti Foundation is a philanthropic nonprofit organization dedicated to building a better, sustainable future and empowering people to lead independent lives. The website presents a professional and consistent brand image, targeting a general audience including donors, partners, and beneficiaries. The organization operates in the nonprofit sector with a medium-sized presence based in Liechtenstein. Technically, the website is built on the Squarespace platform, leveraging modern web technologies such as jQuery, Google Tag Manager, and Didomi for consent management. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. Security posture is strong with HTTPS and HSTS enabled, although additional security headers and explicit security policies are absent. Privacy compliance is partially addressed through a cookie consent mechanism, but no explicit privacy policy or terms of service pages were found. The WHOIS data is malformed and incomplete, which reduces domain trustworthiness, but the website content and technical setup suggest a legitimate and professional organization. Overall, the site scores well in business credibility and security but should improve transparency in privacy and contact information to enhance trust and compliance.

G

Guam Preservation Trust

guampreservationtrust.org

0

The Guam Preservation Trust is a small, established non-profit organization dedicated to preserving Guam's historic sites and cultural heritage. Founded in 1990, it operates with a board of directors representing key expertise areas and provides services including restoration, funding for cultural projects, and public education. The website reflects a professional and consistent brand presence targeting residents and stakeholders interested in Guam's heritage. Technically, the site is built on WordPress using Bootstrap and common plugins, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and uses outdated JavaScript libraries, which could pose risks. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration is privacy protected but consistent with the organization's history and legitimacy. Strategic improvements in security and privacy compliance would enhance trust and reduce risk.

I

International World Games Association

theworldgames.org

0

The International World Games Association (IWGA) operates as a non-profit organization recognized by the International Olympic Committee (IOC) to promote The World Games, a multi-sport event held every four years. The website serves as an official information portal providing details about the sports, history, and editions of The World Games, targeting sports enthusiasts and organizations globally. The site maintains a professional design with consistent branding and a clear focus on its mission. Technically, the website uses standard web technologies including HTML5, CSS3, and JavaScript, with cookie consent scripts from TermsFeed to comply with privacy regulations. The site is mobile-optimized and offers good navigation and SEO features, although some advanced security headers and policies are not evident. The absence of visible WHOIS data suggests privacy protection for domain registration, which is justified for this type of organization. Security posture is moderate with HTTPS likely enabled (inferred from favicon and external links), but lacks explicit security headers and visible incident response or vulnerability disclosure information. Cookie consent is implemented, indicating some privacy compliance, but no explicit privacy or terms of service pages were found in the provided content. Overall, the site is trustworthy and professional but could improve transparency and security practices. The risk assessment is low given the organization's reputable standing and content focus. Strategic recommendations include enhancing security headers, publishing clear privacy and security policies, and providing contact information for incident response to strengthen trust and compliance.

Y

Young Arts Arizona Ltd.

youngartsaz.org

0

Young Arts Arizona Ltd. is a US-based non-profit organization founded in 2001 that provides art education and exhibition opportunities for children and youth. The organization partners with schools, social agencies, medical facilities, and public galleries to facilitate workshops and display thousands of artworks annually. Their market position is that of an established regional non-profit with a strong community focus and trust signals such as 501(c)(3) certification and Guidestar profile. Technically, the website is built on WordPress using the Enfold theme and Avia framework, hosted on Liquid Web. The site is moderately performant, mobile-optimized, and uses HTTPS with a valid SSL certificate. However, it lacks advanced security headers and privacy compliance features such as cookie consent and privacy policies. From a security perspective, the site has a good SSL configuration and domain transfer protection but lacks DNSSEC and security headers. No vulnerability disclosures or incident response contacts are provided. The WHOIS data shows privacy protection consistent with the organization's non-profit status and domain age appropriate for its history. Overall, the website is professional, trustworthy, and safe for general audiences but would benefit from improved privacy compliance and enhanced security practices to strengthen its posture and user trust.

S

Stichting DOEN

doen.nl

0

Stichting DOEN is a Dutch non-profit foundation funded by the Nationale Postcode Loterij and VriendenLoterij, dedicated to supporting innovative initiatives that accelerate the transition to a circular and inclusive economy. The website reflects a mature digital presence with a professional design, clear navigation, and strong branding consistency. It targets social entrepreneurs and innovators focused on sustainability and social impact. Technically, the site is built on WordPress with modern plugins and libraries, optimized for performance, accessibility, and SEO. Security posture is strong with HTTPS, security headers, and secure form handling, though explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with comprehensive cookie and privacy policies and consent mechanisms. Overall, the site is trustworthy and professionally managed, with strong affiliations and certifications supporting its legitimacy.

D

DonateStock Inc.

donatestock.com

0

DonateStock Inc. operates a specialized online platform facilitating the donation of stock to charities and nonprofits. Established in 2001, the company positions itself as a trusted intermediary that simplifies and secures stock gifting, enabling donors to maximize tax benefits while helping nonprofits access new funding sources. The website targets both donors and nonprofit organizations, providing educational resources and an easy-to-use interface for stock donations. The platform is well-positioned in the niche non-profit sector, leveraging modern digital marketing and analytics tools to maintain engagement and trust.

H

Human Rights Campaign Foundation

thehrcfoundation.org

0

The Human Rights Campaign Foundation is a large US-based non-profit organization dedicated to advancing LGBTQ+ equality through a broad range of programs including research, advocacy, education, and community capacity building. The website clearly communicates its mission, impact metrics, and offers resources for diverse stakeholders such as youth-serving professionals, healthcare providers, and educators. Technically, the site employs modern web technologies, asynchronous analytics scripts, and is well optimized for mobile and accessibility standards. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. The absence of WHOIS data is likely due to privacy protection, which is justified for this type of organization. Overall, the site presents a trustworthy and professional digital presence with extensive user tracking and advertising integrations.

N

Netzbegruenung - Verein fuer gruene Netzkultur e.V.

gruene.social

0

gruene.social is a Mastodon social networking instance operated by Netzbegruenung - Verein fuer gruene Netzkultur e.V., a German non-profit organization aligned with the Green Party. The platform serves a niche audience interested in green politics and federated social media, providing a community-focused environment without commercial advertising or intrusive tracking. The website uses Mastodon version 4.4.2 with a modern React-based frontend, indicating a contemporary technical infrastructure with good mobile optimization and moderate performance. Security posture is adequate with HTTPS usage and no exposed sensitive data, but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or terms of service published. Overall, the site is trustworthy and professionally maintained, suitable for its target audience and business model.

T

The Nackey S. Loeb School of Communications

loebschool.org

0

The Nackey S. Loeb School of Communications is a well-established non-profit organization founded in 1999, dedicated to promoting and defending the First Amendment through education, free classes, workshops, and events. The organization targets students, journalists, nonprofits, and the general public interested in communications and constitutional rights. Their business model focuses on providing free and affordable educational services, private trainings, and hosting annual events such as the First Amendment Award. The website reflects a consistent brand and professional presence with clear contact information and social media integration. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including Google reCAPTCHA Enterprise for form security and Typekit fonts for typography. The site is mobile-optimized and performs moderately well, with good SEO practices and accessibility features. However, there is room for improvement in security configurations, such as enabling DNSSEC and HSTS headers to enhance domain and transport security. From a security perspective, the site uses HTTPS with a valid certificate and employs domain locking to prevent unauthorized transfers. The presence of Google reCAPTCHA Enterprise adds protection against automated abuse. Nonetheless, the absence of a published privacy policy, terms of service, incident response, or vulnerability disclosure pages indicates gaps in compliance and transparency. These should be addressed to improve trust and regulatory adherence. Overall, the website is trustworthy, safe for general audiences, and professionally managed. The domain registration data aligns well with the organization's identity and history, supporting legitimacy. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing DNS and transport security, and establishing clear incident response protocols to strengthen the security posture and compliance.

T

The Ford Family Foundation

tfff.org

0

The Ford Family Foundation is a well-established non-profit organization dedicated to supporting rural communities in Oregon and Siskiyou County, California. Their primary services include providing grants to organizations serving children, families, and rural communities, as well as scholarships for students facing obstacles to higher education. The foundation also offers research, community building resources, and distributes free SelectBooks to enrich lives. The website reflects a strong market position as a regional leader in rural community development and education support. Technically, the website is built on WordPress using the Divi theme, leveraging modern web technologies such as Google Fonts, jQuery, and Google Tag Manager for analytics. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Security measures include HTTPS enforcement, security headers, and use of reCAPTCHA on forms, indicating a mature security posture. Security-wise, the site demonstrates good practices with no visible vulnerabilities or exposed sensitive data. However, it lacks a dedicated security policy or vulnerability disclosure page, and incident response contacts are not publicly listed. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact information is primarily via contact forms and social media, with no explicit company emails or phone numbers publicly listed. Overall, the website is professional, trustworthy, and well-maintained, supporting the foundation's mission effectively. Recommendations include publishing a formal security policy, adding vulnerability disclosure information, and enhancing transparency around incident response to further strengthen trust and security posture.

M

Museumvereniging

museum.nl

0

Museumvereniging operates the website museum.nl, a leading platform dedicated to promoting museums and cultural events in the Netherlands. The site provides comprehensive information about museums, exhibitions, events, and the Netherlands Museum Pass, targeting a broad audience of museum visitors and cultural enthusiasts. The organization positions itself as a key non-profit entity supporting Dutch museums and cultural heritage. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and Google Analytics for analytics and marketing purposes. The site is well-optimized for mobile devices, features lazy loading for images, and uses SVG icons for scalable graphics. SEO and accessibility practices are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy documentation and incident response contact information. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the website's claims, showing consistent registrant information and domain age appropriate for the business. Overall, the website demonstrates a strong balance of content quality, technical implementation, and privacy compliance, with room for improvement in formal security policy disclosures and incident response readiness.

H

Het Cultuurfonds

cultuurfonds.nl

0

Het Cultuurfonds is a prominent Dutch non-profit organization dedicated to funding and promoting cultural and nature projects across the Netherlands and its territories. With an annual investment of over 40 million euros, it supports thousands of cultural initiatives, ranging from local to large-scale projects. The organization maintains a strong market position as a key cultural funder with a broad target audience including cultural makers, donors, and the general public. The website reflects a professional and consistent brand image with comprehensive content and clear navigation.

N

Nadace Vodafone

nadacevodafone.cz

0

Nadace Vodafone is a Czech Republic based non-profit foundation established in 2006 and sponsored by Vodafone Czech Republic, a.s. The foundation focuses on social innovation, education, and community support programs, including digital literacy for seniors and acceleration of technological social innovations. The website is professionally designed with consistent branding and provides rich content about its programs and news. Technically, the site uses modern web technologies including JavaScript libraries like Swiper and Plyr, and integrates cookie consent and tag management tools such as OneTrust and Tealium. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are not explicitly published. Privacy compliance is supported by a comprehensive privacy policy and cookie consent mechanism. The domain WHOIS data is unavailable, which limits trust analysis, but the website's content and social media presence support its legitimacy. Overall, the site is well-maintained, user-friendly, and trustworthy for its target audience.

I

International Bank Note Society

theibns.org

0

The International Bank Note Society (IBNS) operates as a non-profit educational organization focused on the study and knowledge of worldwide banknotes and paper currencies. Established in 1961, it serves a global membership base of over 2,000 members across more than 90 countries. The website provides educational content, membership benefits, and publications such as a quarterly journal. The organization targets banknote collectors and numismatists, offering resources to support their interests and collections. Technically, the website is built on an outdated Joomla! 1.5 CMS platform, which poses security risks due to lack of support and updates. The site uses JavaScript libraries including MooTools and integrates Google Analytics and Google Tag Manager for tracking. The design and user experience are basic, with limited mobile optimization and accessibility features. Navigation is clear, but the site lacks modern performance and SEO optimizations. From a security perspective, the site uses HTTPS but lacks visible security headers and employs an outdated CMS version, increasing vulnerability exposure. There is no cookie consent mechanism despite the use of tracking scripts, and WHOIS data for the domain is malformed or unavailable, limiting trust verification. The site includes a login form but no advanced authentication features are evident. Overall, the security posture is moderate but requires improvements to reduce risk. The overall risk assessment suggests the IBNS website is a legitimate non-profit resource with moderate technical maturity and some security weaknesses primarily due to outdated infrastructure and incomplete privacy compliance. Strategic recommendations include upgrading the CMS, implementing security headers, adding cookie consent, and improving mobile and accessibility features to enhance trust and security.

P

Pledge Platform Inc.

pledgeit.org

0

Pledge It is a specialized SaaS fundraising platform designed to empower nonprofit organizations to rally communities, raise funds, and achieve their goals through multiple fundraising methods including peer-to-peer campaigns, events, donation forms, crowdfunding, and recurring giving. The platform also offers Power-Ups such as sponsorships, raffles, silent auctions, and merchandise shops to enhance fundraising capabilities. The company positions itself as a trusted partner for nonprofits, supported by strong customer testimonials and high ratings on software review platforms. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies such as Google Fonts, HubSpot analytics and marketing tools, Facebook Ads Pixel, and Lottie animations for a rich user experience. The site is well-optimized for performance, mobile responsiveness, and accessibility, with a professional design and clear navigation structure. From a security perspective, the site enforces HTTPS and uses reputable third-party services for analytics and marketing. While explicit security headers are not detected in the HTML content, no sensitive data exposure or vulnerabilities are apparent. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms and GDPR considerations. However, the absence of a public security policy or vulnerability disclosure page suggests room for improvement in transparency. Overall, the website and business exhibit a high level of professionalism and trustworthiness. The lack of WHOIS data is attributed to privacy protection, which is justified for this business type. The platform's focus on nonprofits and its comprehensive service offerings position it well in its niche market. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

Tin Mountain Conservation Center is a well-established nonprofit organization focused on environmental education and conservation in New Hampshire, USA. Their website offers comprehensive information about nature programs, camps, research, and community involvement. The organization targets learners of all ages and outdoor enthusiasts, providing educational and recreational services that foster a deeper understanding of the natural world. The website is professionally designed with good navigation and mobile optimization, reflecting a mature digital presence. Technically, the site uses a combination of FireSpring CMS, jQuery, and third-party services such as Google Analytics, Clicky, and Datadog for analytics and monitoring. Hosting appears to be managed via GoDaddy with domain privacy protection. Performance is moderate with good SEO and basic accessibility features. However, there is room for improvement in security practices, including enabling DNSSEC, implementing CSP headers, and publishing a security.txt file. Security posture is solid with HTTPS enforced and domain status protections in place, but the absence of explicit privacy and cookie policies, as well as consent mechanisms, indicates compliance gaps. No incident response or vulnerability disclosure information is publicly available, which could be improved to enhance trust and transparency. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security transparency to align with best practices and regulatory requirements.

T

Trust for Public Land

tpl.org

0

Trust for Public Land (TPL) is a well-established non-profit organization dedicated to creating parks and protecting public lands to ensure access to the outdoors for all communities. The website reflects a mature digital presence with comprehensive content, strong branding, and active engagement through social media and donation platforms. The organization positions itself as a leader in land conservation with a mission dating back to 1972, targeting a broad audience including donors, communities, and environmental advocates. Technically, the site leverages WordPress CMS with modern JavaScript libraries and integrates multiple analytics and marketing tools, indicating a robust digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism and trustworthiness, with minor recommendations to enhance transparency and security disclosures.

Q

Quimby Family Foundation

quimbyfamilyfoundation.org

0

The Quimby Family Foundation is a small non-profit organization focused on fostering stronger relationships between people and nature through movement and nourishment. It primarily awards grants to Maine-based nonprofits advancing human wholeness, with two main focus areas: Movement and Nourishment. The website is professionally designed on the Squarespace platform, featuring clear navigation and relevant content about grant opportunities, featured grantees, and organizational mission. The foundation targets community organizations and nonprofits in Maine, positioning itself as a regional philanthropic entity. Technically, the website leverages Squarespace CMS, uses HTTPS with HSTS enabled, and includes modern web fonts and jQuery for interactivity. Performance and mobile optimization are good, though accessibility features are basic. The site lacks advanced security headers and explicit privacy or cookie policies, which are areas for improvement. No analytics or tracking services beyond platform defaults were detected, indicating minimal user tracking. From a security perspective, the site has a solid SSL configuration and no visible vulnerabilities or exposed sensitive data. However, the absence of privacy, cookie, and incident response policies indicates compliance gaps. The WHOIS data is privacy protected with no public registrant details, which is typical for small non-profits and does not raise immediate concerns. Overall, the site appears legitimate and trustworthy but would benefit from enhanced privacy and security disclosures. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers, publishing an incident response policy, and improving accessibility compliance. These steps will strengthen the foundation's digital trust and regulatory compliance posture.

P

Portland Parks Conservancy

portlandparksconservancy.org

0

Portland Parks Conservancy is a small non-profit organization dedicated to supporting and enhancing the parks, trails, and open spaces of Portland, Maine through fundraising and community engagement. The website clearly communicates its mission and encourages donations and volunteer participation, positioning itself as a trusted local community resource. Technically, the site is built on Squarespace, leveraging modern web technologies including Vimeo for video backgrounds and Google reCAPTCHA Enterprise for form security. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, but lacks advanced security headers such as HSTS and CSP. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the domain appears legitimate despite the lack of WHOIS data, likely due to privacy protection typical for non-profits.

T

The Northern Forest Center

northernforest.org

0

The Northern Forest Center is a well-established non-profit organization focused on investing in people and communities to foster regional prosperity and environmental resilience across the Northern Forest region of the northeastern United States. Their website clearly communicates their mission, impact, and ongoing projects, targeting residents, community leaders, and donors interested in sustainable forest stewardship and rural economic development. The organization maintains a strong regional presence with multiple staff locations and active social media engagement. Technically, the website is built on WordPress with a modern tech stack including SEO optimization via Yoast, caching, and analytics tools such as Google Analytics and Hotjar. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, there is room for improvement in security practices, such as enabling DNSSEC and implementing security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy and terms of service present but lacking a cookie consent mechanism. The WHOIS data aligns well with the organization's identity, supporting legitimacy and trust. Overall, the Northern Forest Center's website is professional, trustworthy, and serves its audience effectively. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance its security posture and user trust.

N

National Park Foundation

nationalparks.org

0

The National Park Foundation website serves as the official charitable partner of the National Park Service, providing resources, fundraising, and educational outreach to support national parks across the United States. The organization positions itself as a large, reputable non-profit with a clear mission to conserve landscapes, engage youth, preserve history and culture, and promote outdoor exploration. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency. It targets a broad audience including park enthusiasts, donors, educators, and the general public. Technically, the website employs a modern tech stack including JavaScript frameworks, Google Tag Manager, analytics tools like Google Analytics and Microsoft Clarity, and uses secure HTTPS connections with appropriate security headers. The site is mobile-optimized and accessible, with good SEO practices. External domains linked include trusted social media platforms and donation processing services. From a security perspective, the site demonstrates good practices with HTTPS enforcement, security headers, and no visible vulnerabilities or exposed sensitive data. However, there is no explicit security policy or incident response information published, and WHOIS data is privacy protected, which is common for non-profits but limits transparency. Overall, the site maintains a strong security posture. The overall risk assessment is low, with the site appearing trustworthy, legitimate, and professionally managed. Strategic recommendations include publishing a security policy, adding vulnerability disclosure information, and enhancing DNSSEC deployment. These steps would further strengthen trust and compliance.

N

National Parks Conservation Association

npca.org

0

The National Parks Conservation Association (NPCA) is a well-established non-profit organization dedicated to protecting and enhancing America's National Park System. Their website reflects a strong commitment to advocacy, education, and public engagement with a professional and consistent brand presence. The organization targets a broad audience including national park visitors, environmental advocates, and the general public. NPCA operates primarily through fundraising, advocacy campaigns, and educational outreach, positioning itself as a leading voice in national park conservation. Technically, the website employs a modern technology stack including JavaScript frameworks, SVG graphics, and integrates multiple analytics and advertising services such as Google Analytics, Facebook Pixel, and Quantcast. The site is mobile-optimized, accessible, and SEO-friendly, though some opportunities exist to enhance security headers and incident response transparency. Privacy compliance is robust with clear policies and cookie consent mechanisms in place. Security posture is generally strong with HTTPS enforced and CSRF protections on forms, but lacks explicit security policy disclosures and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain registration trust analysis, but the presence of multiple trust indicators and professional content supports legitimacy. Overall, NPCA's website demonstrates a mature digital presence with strong business credibility and good security hygiene. Strategic improvements in security policy transparency and WHOIS data availability would further enhance trust and compliance.

M

Maine Conservation Voters

maineconservation.org

0

Maine Conservation Voters is a non-profit organization dedicated to protecting Maine's environment, climate future, and democracy through public policy advocacy, political accountability, and community engagement. The organization targets residents and supporters in Maine who are passionate about conservation and democratic participation. Their business model relies on memberships, donations, and events to support their mission. The website is professionally designed with consistent branding and clear calls to action, reflecting a medium-sized regional non-profit with a strong market position in environmental advocacy. Technically, the website is built on WordPress using Elementor, with integrations such as Google Analytics and Modern Events Calendar Lite. The site demonstrates moderate performance and good mobile optimization, though accessibility features could be improved. SEO practices are well implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and includes important security headers, indicating a good security posture. However, it lacks visible cookie consent mechanisms and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data due to privacy protection is common for non-profits and does not detract significantly from trustworthiness given the website's transparency and social media presence. Overall, the site presents a low-risk profile with strong business credibility and a good technical foundation. Strategic recommendations include implementing cookie consent, publishing terms of service and security policies, and enhancing accessibility to further improve compliance and user trust.

I

International Mountain Bicycling Association

imba.com

0

The International Mountain Bicycling Association (IMBA) operates a professionally designed website focused on creating, enhancing, and protecting mountain biking trails across the United States. The organization targets mountain biking communities and enthusiasts, providing services such as trail development guidance, community engagement, funding support, and educational programs. The website leverages modern technologies including Drupal 10, Google Maps API, and integrates marketing and analytics tools like Google Analytics and Facebook Pixel. Security posture is solid with HTTPS enforcement and CAPTCHA on login forms, though additional security headers and public security policies could enhance protection. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the website's professional content and active social media presence support its credibility. Privacy and cookie policies are not detected, indicating an area for compliance improvement.

F

Friends of Katahdin Woods and Waters

friendsofkww.org

0

Friends of Katahdin Woods and Waters is a small non-profit organization dedicated to the preservation, protection, and promotion of the Katahdin Woods and Waters National Monument. The organization focuses on conservation efforts, educational youth programs, community events, and fundraising through memberships and donations. Their market position is regional with a clear mission to engage the local and broader community in outdoor and conservation activities. Technically, the website is built on WordPress using the Organic Nonprofit theme and WooCommerce for donation processing. It employs modern web technologies including jQuery, Google Analytics, and Facebook Pixel for tracking. The site is mobile optimized with good SEO practices but lacks some advanced accessibility features and security headers. From a security perspective, the site uses HTTPS with a good SSL configuration and secure forms. However, it lacks visible security headers and does not provide privacy or cookie policies, which are important for compliance and user trust. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional and trustworthy with clear contact information and social media presence. The lack of WHOIS data limits domain registration insights, but the privacy protection is justified for a non-profit. Recommendations include adding privacy and cookie policies, implementing security headers, and publishing incident response or vulnerability disclosure information to enhance security posture and compliance.

Make-A-Wish Nederland is a well-established non-profit organization founded in 2011, dedicated to fulfilling the wishes of seriously ill children in the Netherlands. The website serves as a platform for donors and supporters to contribute financially to this cause. The organization maintains a consistent brand presence and targets a general audience interested in charitable giving. Technically, the website is built on Craft CMS, uses Cloudflare for DNS and CDN services, and integrates modern tools such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the site enforces HTTPS, uses CSRF tokens, and implements cookie consent mechanisms, although there is room for improvement in DNSSEC and explicit security headers. Overall, the domain registration data aligns well with the organization's claims, supporting its legitimacy. No blocking or WAF challenges were detected, allowing full content access and analysis.

I

iRaiser Group

kentaa.nl

0

iRaiser Group operates a professional online fundraising platform targeting non-profit organizations primarily in the Netherlands and Europe. The company offers a suite of tools including donation forms, peer-to-peer fundraising, crowdfunding, event fundraising, and online collection solutions. Their market position is strong with over 900 non-profits served and more than 2.5 billion euros raised since 2012. The website is well-designed, mobile-optimized, and uses modern marketing and analytics technologies such as HubSpot CMS, Google Analytics, and Piwik PRO. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place. However, the domain WHOIS data is missing or unavailable, which slightly impacts trust but does not detract from the professional presentation and business credibility. Overall, the site is safe, GDPR compliant, and trustworthy for its target audience.

P

Postcode Lottery Group

werkendoejebij.nl

0

The website www.werkendoejebij.nl represents the Postcode Lottery Group, a well-established non-profit organization operating lotteries in the Netherlands to raise funds for charitable causes. The site targets job seekers interested in working for this organization and provides detailed information about departments, vacancies, and the company's mission. The business is large, founded in 1989, and has a strong market position in the Dutch lottery and charity sector. The website content is professionally presented, consistent in branding, and includes rich media such as videos and employee stories. Technically, the site uses modern web technologies including the Elm framework for interactive components, Google Tag Manager and Google Analytics for tracking, and embedded YouTube videos served via privacy-enhanced domains. The site is mobile-optimized and SEO-friendly with proper metadata and structured data. Cookie consent is implemented with granular user control, reflecting good privacy practices. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms to comply with GDPR. However, no explicit security headers or incident response policies are published, and no vulnerability disclosure information is available. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic improvements could include publishing security policies, enhancing security headers, and providing clearer contact information for security incidents.

M

Museumprijs

museumprijs.nl

0

The Museumprijs website serves as a dedicated platform for promoting the VriendenLoterij Museumprijs, a prestigious public award for museums in the Netherlands. Supported by the Prins Bernhard Cultuurfonds, VriendenLoterij, and Museumvereniging, the site provides comprehensive information about nominees, previous winners, and news related to the award. It targets museum professionals, cultural stakeholders, and the general public interested in Dutch cultural heritage. The business model is non-profit, focusing on cultural promotion and public engagement through awards and events. Technically, the website is built on modern frameworks including Next.js and React, leveraging the Storyblok CMS for content management. It integrates third-party services such as Google Tag Manager for analytics and Usercentrics for consent management, ensuring compliance with privacy regulations. The site demonstrates good mobile optimization and SEO practices, although accessibility could be further enhanced. From a security perspective, the website enforces HTTPS, employs standard security headers, and uses a consent management platform to handle cookies and tracking. However, it lacks explicit security policies or incident response information, and no vulnerability disclosure mechanism is present. Overall, the security posture is solid but could benefit from additional transparency and formal policies. The overall risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include publishing a dedicated security policy, establishing an incident response contact, enhancing accessibility, and considering a vulnerability disclosure policy to further strengthen trust and compliance.

V

VriendenLoterij N.V.

vriendenloterij.nl

0

VriendenLoterij N.V. operates a well-established Dutch lottery platform focused on providing daily, weekly, and monthly prize draws while supporting cultural, sports, and welfare organizations. The website demonstrates a mature digital presence with a modern tech stack including Vue.js, RequireJS, and integration with multiple marketing and analytics tools such as Google Tag Manager, VWO, and Usercentrics CMP for consent management. The site is hosted likely on Microsoft Azure infrastructure and uses Enonic CMS, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are not published. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and compliant with Dutch regulatory requirements.

M

MOOIWERK

mooiwerkbreda.nl

0

MOOIWERK is a community-oriented platform dedicated to facilitating volunteer work and supporting volunteer organizations and sports associations in Breda, Netherlands. The website targets local residents interested in volunteering opportunities and community engagement. The business model appears to be non-profit or community service focused, aiming to connect volunteers with organizations in the Breda area. The platform is relatively young, with domain registration dating back to 2018, and maintains a consistent brand presence with good content quality and user experience. Technically, the website is built on WordPress using the Astra theme and leverages popular plugins such as Yoast SEO, Elementor, and LearnDash LMS. It integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, Hotjar, and ActiveCampaign, indicating a moderate level of digital maturity. The site is hosted by team.blue nl B.V. and employs HTTPS with DNSSEC enabled, reflecting a solid baseline security posture. Mobile optimization and SEO practices are good, though accessibility features are basic. From a security perspective, the site benefits from HTTPS, DNSSEC, and Google reCAPTCHA to mitigate automated abuse. However, it lacks explicit security headers and does not publish privacy or cookie policies, which are critical for GDPR compliance. There is no visible incident response or vulnerability disclosure information, which could be improved to enhance trust and security readiness. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is functional and trustworthy for its community service purpose but requires improvements in privacy compliance and security transparency. Strategic recommendations include publishing comprehensive privacy and cookie policies, implementing security headers, and establishing incident response contacts to strengthen compliance and user trust.

C

Creative West

wearecreativewest.org

0

Creative West is a U.S. Regional Arts Organization focused on supporting artists, culture bearers, state arts agencies, and creative organizations primarily in the western United States. The organization provides grants, advocacy, technology systems, and consulting services to build equitable creative capacity. The website reflects a professional and well-established entity with a clear mission and target audience in the arts and cultural sector. The domain registration is consistent with the organization's claims and recent rebranding, indicating legitimacy. Technically, the website is built on WordPress with modern technologies including jQuery, Yoast SEO, Google Tag Manager, and a consent management platform (Usercentrics). Hosting appears to be on AWS infrastructure. The site is mobile optimized, SEO friendly, and uses HTTPS with good SSL configuration. However, some security headers like Content-Security-Policy and DNSSEC are missing, which could be improved. Security posture is solid with HTTPS enforced and domain transfer protection, but lacks explicit incident response or vulnerability disclosure information. Privacy and cookie policies are present with consent mechanisms, indicating good privacy compliance. No contact emails or phone numbers are explicitly listed, with contact primarily via forms. Overall, the website is trustworthy, professional, and safe for general audiences. It demonstrates good digital maturity but could enhance security by enabling DNSSEC, adding security headers, and publishing a vulnerability disclosure policy.

T

Home | Portland's Living Room - The Square

thesquarepdx.org

0

TheSquarePDX.org is a community-focused website centered around Portland's Pioneer Courthouse Square, offering visitors the ability to search for commemorative bricks, explore the square, and purchase bricks. The site operates on a WordPress platform with WooCommerce for e-commerce capabilities, enhanced by Yoast SEO for search optimization and Google Analytics for visitor tracking. The technical infrastructure is modern and typical for small to medium community or non-profit websites, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and explicit privacy or cookie policies, which are areas for improvement. WHOIS data is unavailable due to query failure or privacy protection, which is common for such sites but limits trust verification. Overall, the site is safe, professional, and serves a general audience with community engagement and e-commerce services.

G

Geef.nl

geef.nl

0

Geef.nl is a well-established Dutch crowdfunding and donation platform that enables individuals and charities to raise funds for personal and charitable causes. With over 23 years of operation, it serves a large community of donors and charities, positioning itself as a trusted player in the non-profit sector in the Netherlands. The platform offers campaign creation, donation processing, and comparison tools for charities, targeting individuals and organizations seeking to fundraise effectively. Technically, the website is built on Angular 8, uses Google Analytics and Tag Manager for tracking, and implements a cookie consent mechanism to comply with privacy regulations. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is enforced, and trust seals are displayed, but explicit security headers and incident response policies are not publicly documented. Overall, the site demonstrates a solid security posture with room for improvement in transparency and security policy publication. The domain registration data aligns well with the business claims, indicating high legitimacy and trustworthiness.

P

Points of Light

pointsoflight.org

0

Points of Light is a well-established non-profit organization founded in 1990, dedicated to increasing volunteerism and civic engagement globally. The organization serves a broad audience including nonprofits, corporations, and individual volunteers, providing resources, events, and corporate partnership programs to maximize social impact. Their market position is strong as a leading entity in volunteer mobilization with a large global footprint. Technically, the website is built on WordPress and leverages modern analytics and marketing tools such as Google Analytics, Hotjar, and HubSpot, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, supporting a positive user experience. From a security perspective, the site enforces HTTPS, employs multiple security headers, and does not expose sensitive data. However, it lacks a publicly available security policy or vulnerability disclosure page, which are recommended for transparency and incident readiness. Overall, the website presents a low risk profile with strong trust indicators and professional presentation. Strategic improvements in security transparency and incident response communication would further enhance their security posture and stakeholder confidence.

H

Human Rights Campaign

hrc.org

0

Human Rights Campaign (HRC) is a leading non-profit organization dedicated to advocating for LGBTQ+ equality and inclusion since 1980. The website serves as a hub for community engagement, education, policy advocacy, and fundraising. It targets LGBTQ+ individuals and allies, offering resources, campaigns, and calls to action such as volunteering and donations. The organization enjoys a strong market position as a prominent voice in LGBTQ+ rights advocacy in the United States. Technically, the website employs a modern technology stack including Google Tag Manager, Hotjar, Yotpo, and multiple advertising pixels, indicating a mature digital marketing and analytics infrastructure. The site is well optimized for performance, mobile responsiveness, and accessibility, with comprehensive SEO and metadata implementation. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR compliance. However, explicit security headers are not detected, and there is no public security policy or incident response information available. The WHOIS data is privacy protected, which is common for non-profits but limits domain registration transparency. Overall, the website presents a professional, trustworthy, and secure platform for its advocacy mission. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and providing clearer contact information for security and privacy inquiries to further strengthen trust and compliance.

D

Disability:IN

disabilityin.org

0

Disability:IN is a well-established non-profit organization founded in 2018, dedicated to advancing disability inclusion in business globally. The organization partners with leading companies to provide benchmarking tools like the Disability Index, consulting services, and programs such as the NextGen Leaders Initiatives and Supplier Inclusion certification. Their market position is strong within the non-profit sector focused on diversity and inclusion, supported by a professional and content-rich website. Technically, the website is built on WordPress using modern frameworks and plugins, with good SEO and accessibility practices. Security posture is solid with HTTPS and domain protection, though DNSSEC is not enabled and some privacy compliance aspects like cookie consent are missing. Overall, the site reflects a credible and professional entity with extensive tracking and marketing tools in use.

The website cgdev.org belongs to the Center for Global Development, a US-based non-profit organization established in 2001. The domain registration data is consistent with the organization's identity and history. However, the website content is currently inaccessible due to a Cloudflare Turnstile human verification challenge, preventing a full content and security analysis. The visible technical infrastructure includes Cloudflare security and performance services, but no detailed information about the site's content, privacy policies, or contact details is available. This limits the ability to assess the website's compliance, user experience, and security posture comprehensively. The domain appears legitimate and well-established, but the lack of accessible content and policies reduces trust and transparency from a visitor perspective.

E

Elliotsville Foundation, Inc.

elliotsvillefoundation.org

0

Elliotsville Foundation, Inc. is a small non-profit organization dedicated to advancing environmental justice and community-based economic development in Maine. Their work focuses on strengthening communities and economies by expanding connections with the outdoors, promoting responsible and equitable engagement with the environment, and maintaining natural spaces for public enjoyment. The organization collaborates with multiple reputable partners including Friends of Katahdin Woods & Waters, National Park Service, and others to enhance visitor experiences and conservation efforts. Technically, the website is built on the Webflow platform, utilizing modern web technologies such as Google Fonts, jQuery, and Google Tag Manager for analytics. The site is hosted on AWS Cloudfront CDN, ensuring good performance and availability. The website is mobile optimized with a professional design and clear navigation, although accessibility features could be improved. SEO is basic but adequate for the site’s purpose. From a security perspective, the site uses HTTPS with excellent SSL configuration and does not expose sensitive data. However, it lacks important security headers and does not provide privacy or cookie policies, which are compliance gaps. No vulnerability disclosure or incident response information is present. WHOIS data is privacy protected or unavailable, which is common for non-profits, but the domain appears legitimate based on content and update recency. Overall, Elliotsville Foundation’s website is trustworthy and professional, serving its mission well. To enhance security posture and compliance, it should implement security headers, publish privacy and cookie policies, and consider adding vulnerability disclosure information. These improvements will strengthen user trust and regulatory compliance.

V

Virginia Local News Project

virginialocalnewsproject.org

0

The Virginia Local News Project is a newly established 501(c)(3) nonprofit organization dedicated to sustaining, supporting, and growing local news across Virginia communities. The website clearly communicates its mission to train journalists, protect press freedom, grow public understanding of local journalism, and strengthen digital infrastructure. It targets local news organizations, journalists, and community members interested in local news sustainability. The organization is positioned as a statewide nonprofit with a focus on collaboration and digital innovation. Technically, the website is built on WordPress 6.8.2 with modern plugins such as Beaver Builder and Yoast SEO, ensuring good SEO and responsive design. Google Analytics is used for visitor tracking, but no cookie consent mechanism is present, which may affect privacy compliance. The site uses HTTPS with a valid SSL certificate, but DNSSEC is not enabled, and security headers are missing, indicating room for security improvements. From a security perspective, the site shows a moderate security posture with no visible vulnerabilities or exposed sensitive data. However, the absence of security policies, incident response contacts, and vulnerability disclosure mechanisms suggests limited formal security governance. The domain registration is consistent with the organization's mission and location, enhancing trustworthiness. Overall, the website is professional, informative, and trustworthy, with good content quality and business credibility. Strategic improvements in privacy compliance and security hardening would further enhance its posture and user trust.

P

Public Notice Resource Center

pnrc.net

0

The Public Notice Resource Center (PNRC) is a nonprofit organization dedicated to promoting government transparency through education and advocacy focused on the importance of public notices in local newspapers. It serves as a national resource monitoring public notice legislation across all 50 states and provides newsletters, policy briefings, and resources to journalists, policymakers, and the general public. The organization maintains partnerships with various press associations and offers donation capabilities via PayPal. Technically, the website is built on WordPress with common plugins and social media integrations, delivering a good user experience with moderate performance and mobile optimization. Security posture is adequate with HTTPS enforced but lacks some security headers and privacy compliance elements such as privacy and cookie policies. The absence of WHOIS registration data is a concern for domain legitimacy, though the website content and affiliations support its credibility. Overall, PNRC presents a professional and trustworthy online presence with room for improvement in privacy compliance and security hardening.

C

Cosmic

designbycosmic.com

0

Cosmic is a specialized creative agency focused on empowering social impact organizations, particularly nonprofits and mission-driven entities, to build compelling brands and digital presences that succeed in the modern attention economy. Their services include brand strategy, web design and development, and marketing campaigns tailored to drive engagement and real-world action. The company positions itself as a partner for social impact leaders seeking to modernize their communications and digital strategies. Technically, the website is built on a modern React and Next.js stack, hosted with Cloudflare CDN, ensuring fast performance and mobile optimization. The site demonstrates good SEO and accessibility practices, with comprehensive privacy and cookie policies in place. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not found. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. The website provides clear contact information and social media presence, enhancing business credibility. Recommendations include adding a dedicated security policy and vulnerability disclosure page to further strengthen trust and compliance.

B

Black United Fund of Oregon

bufor.org

0

The Black United Fund of Oregon (BUF-OR) is a small, established non-profit organization dedicated to supporting Oregon's underserved communities, particularly focusing on BIPOC groups and youth. Their core mission revolves around social and economic development through scholarships, mentorship, community grants, and economic justice initiatives. The organization has a strong market position as one of the longest-serving BIPOC-led foundations in Oregon with a 40-year history. Technically, the website is built on WordPress using Elementor and Astra theme, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

R

Ronald W. Naito MD Foundation

rwnfoundation.org

0

The Ronald W. Naito MD Foundation is a nonprofit organization dedicated to continuing the legacy of Dr. Ron Naito by providing grants to nonprofit organizations focused on healing communities and the planet. Their key funding areas include climate, health equity, sustainable communities, and Oregon arts and culture. The foundation targets nonprofit organizations and donors interested in social and environmental causes, positioning itself as a regional philanthropic entity with a clear mission and community focus. Technically, the website is built on WordPress using the TwentyTwenty theme and Genesis Blocks plugin, leveraging jQuery and standard web technologies. The site is moderately performant, mobile-optimized, and has basic accessibility features. Security posture is solid with HTTPS enforced but lacks advanced security headers and cookie consent mechanisms. No WHOIS data is available due to privacy protection, which is typical for nonprofits. Overall, the website is professional, trustworthy, and serves its audience well, though improvements in privacy compliance and security headers are recommended.

T

The Collins Foundation

collinsfoundation.org

0

The Collins Foundation is a well-established nonprofit grantmaking organization founded in 1947, focused on supporting Oregon communities through funding in arts, education, health equity, and environmental protection. The website is professionally designed using Squarespace, providing clear information about the foundation's mission and grant programs. Technically, the site uses modern web technologies and enforces HTTPS with HSTS, ensuring secure connections. However, it lacks several security headers and does not publish privacy or security policies, which are important for compliance and trust. Contact information is not explicitly provided, which may hinder user engagement and trust. Overall, the site is accessible and functional but could improve in privacy compliance and security transparency.

A

Autzen Foundation

autzenfoundation.org

0

The Autzen Foundation is a non-profit organization focused on supporting charitable work within Oregon, primarily through awarding grants to small non-profit organizations in social services, arts and culture, education, environmental initiatives, and youth-centered missions. The website serves as an informational and application portal for grant seekers, hosted on the Wix platform, indicating a moderate level of digital maturity with standard web technologies and analytics integration. Security posture is basic with HTTPS enabled but lacks advanced security headers and published policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website appears legitimate and professionally presented but would benefit from enhanced transparency and security practices.

N

Neon One

arts-people.com

0

Neon One operates as a provider of ticketing, reporting, and fundraising software solutions tailored for nonprofit organizations, particularly in the performing arts sector. The company offers a SaaS platform designed to streamline nonprofit event ticketing and donor management, positioning itself as a specialized technology provider in the nonprofit software market. The website content and structured data confirm a professional and focused business model with a medium-sized organizational footprint founded in 2016. Technically, the website is built on WordPress and leverages a modern technology stack including Google Analytics, Google Tag Manager, and Visual Website Optimizer, indicating a mature digital infrastructure with integrated marketing and analytics capabilities. Security posture is adequate with HTTPS enforced and domain registration protections in place, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service found on the analyzed page. Overall, the website is professional, trustworthy, and well-positioned in its niche, though it would benefit from enhanced transparency and security hardening.

P

Paměť národa

behpropametnaroda.cz

0

Běh pro Paměť národa is a Czech non-profit organization that organizes a nationwide commemorative running event to honor those who resisted totalitarian regimes and to support educational and memorial projects. The website reflects a well-established event with significant participation, reputable partners, and media sponsorships. The business model relies on participant fees, donations, and sponsorships to fund activities such as filming witness stories and educational programs. The target audience includes the general public interested in history and social causes. Technically, the website is built on WordPress and uses common libraries such as jQuery and Leaflet.js for interactive maps. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing purposes, and employs the Complianz GDPR plugin to manage cookie consent, demonstrating a good level of digital maturity. The site is mobile-optimized and presents a professional design with clear navigation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers which could enhance protection. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is strong with clear links to privacy policies and cookie management. However, WHOIS data is unavailable, likely due to privacy protection, which is acceptable for this type of non-profit entity. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic recommendations include adding security headers, publishing explicit security policies if applicable, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.