Security Directory

G

Gradsko društvo Crvenog križa Đakovo

gdcrvenikrizdjakovo.hr

0

Gradsko društvo Crvenog križa Đakovo is a local branch of the Croatian Red Cross focused on providing humanitarian aid, social services, health-related activities, and volunteer coordination within the Đakovo region. The organization operates as a non-profit entity with a clear community-oriented mission, offering services such as first aid training, blood donation campaigns, and disaster response. Their website reflects this mission with relevant content and official documentation, targeting the general public and volunteers in the local area. Technically, the website is built on WordPress with common plugins such as MasterSlider and Bootstrap for responsive design. The site is hosted under Croatian academic network infrastructure (CARNET), ensuring local presence and reliability. The website demonstrates good mobile optimization and accessibility features, although SEO and advanced technical optimizations are basic. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS properly but lacks several security headers and advanced protections such as anti-CSRF tokens on forms. There is no visible cookie consent mechanism, which is a GDPR compliance gap. The WHOIS data is consistent with the organization's location and purpose, enhancing trustworthiness. No critical vulnerabilities or suspicious indicators are found, but improvements in security policies and technical safeguards are recommended. Overall, the website is a trustworthy and functional digital presence for a small non-profit humanitarian organization. Strategic enhancements in security posture and privacy compliance would further strengthen their digital maturity and user trust.

Gradsko društvo Crvenog križa Donji Miholjac is a local branch of the Croatian Red Cross, established in 2012, providing humanitarian aid, blood donation campaigns, social services such as home assistance, and community support activities. The organization targets local community members, volunteers, and donors, operating as a non-profit entity with a strong local presence and partnerships with municipal and regional government bodies. The website reflects this mission with relevant content, news updates, and event information.

C

Crveni Križ Darda

hck-darda.hr

0

Općinsko društvo Crvenog križa Darda is a local branch of the Croatian Red Cross dedicated to humanitarian and community services such as blood donation, first aid training, youth engagement, and health awareness. The website serves as an informational platform targeting local community members and volunteers. Technically, the site is built on an older WordPress platform with common plugins like Yoast SEO and Contact Form 7, hosted under Croatian academic network infrastructure. While the site is functional and well-structured, it uses outdated software versions that may pose security risks. Security posture is moderate with HTTPS enabled but lacks modern security headers and explicit privacy or cookie policies. The domain registration data is consistent with the organization's identity and location, indicating legitimacy. Overall, the website is trustworthy but would benefit from technical and compliance improvements.

G

Gradsko društvo Crvenog križa Beli Manastir

gdck-belimanastir.hr

0

Gradsko društvo Crvenog križa Beli Manastir is a local branch of the Croatian Red Cross focused on humanitarian aid, first aid education, blood donation, and volunteer coordination within the Beli Manastir community. The organization operates as a small non-profit entity with a clear mission to support vulnerable populations and promote community health and safety. Their market position is that of a trusted regional humanitarian organization affiliated with the national Croatian Red Cross and supported by European solidarity programs. Technically, the website is built on WordPress with a modern but moderate tech stack including Google Analytics and accessibility tools. The site is mobile optimized and SEO friendly, providing a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and anonymized analytics, though it lacks some advanced security headers and explicit incident response information. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and serves its community well, but could improve in security and privacy transparency.

M

Mediators Foundation

mediatorsfoundation.org

0

Mediators Foundation is a small non-profit organization focused on incubating and supporting social action projects that bridge societal divides in the United States. The organization provides services such as project cultivation, field building initiatives, and consulting to civic change agents and social entrepreneurs. The website is built on Squarespace, leveraging modern web technologies and Google reCAPTCHA for form security. The site is well-designed, mobile-optimized, and provides clear navigation and relevant content about its mission and services. Security posture is strong with HTTPS and HSTS enabled, but the absence of explicit privacy and cookie policies indicates room for improvement in compliance. Overall, the website presents a professional and trustworthy image consistent with its non-profit mission.

N

Nadační fond Dvojka srdcem

dvojkasrdcem.cz

0

Nadační fond Dvojka srdcem is a Czech non-profit foundation focused on providing social and financial assistance to residents of Prague 2, particularly families and individuals in need. The foundation offers support such as financial contributions for school supplies, extracurricular activities, and aid for individuals with health challenges. The website presents beneficiary stories and donation progress, reinforcing transparency and community engagement. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for tracking. Hosting is provided by a Czech hosting provider, aligning with the foundation's local focus. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks some security headers and formal privacy and cookie policies, which are important for GDPR compliance. Overall, the site is professional, trustworthy, and well-structured, though improvements in privacy compliance and security headers are recommended.

V

Viešoji įstaiga Architektūros fondas

archfondas.lt

0

Architektūros fondas is a Lithuanian non-profit organization established in 2004, dedicated to promoting architectural culture, education, and community engagement. The organization operates various cultural and educational projects, including mentorship programs and international collaborations, targeting a broad audience interested in architecture and culture. The website is professionally designed, content-rich, and well-structured, supporting the organization's mission and outreach efforts. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses several JavaScript libraries for enhanced user experience. It employs SEO best practices and is mobile-optimized. Security-wise, the site uses HTTPS and GDPR-compliant cookie consent mechanisms, though explicit security headers and policies are not evident. Overall, the site demonstrates a mature digital presence with good privacy compliance and trustworthy business information.

H

HESTIA - Centrum pro dobrovolnictví, z.ú.

dobromani.cz

0

Dobromani.cz is a Czech non-profit platform dedicated to facilitating online volunteering by connecting non-profit organizations with volunteers who can provide expertise and support remotely. The platform is operated by HESTIA - Centrum pro dobrovolnictví, a recognized non-profit organization in the Czech Republic. The website offers project planning tools, volunteer matching, and ongoing project support, targeting non-profits adapting to new operational realities, especially post-pandemic. Technically, the site uses a modern JavaScript stack including jQuery, Bootstrap, and analytics tools such as Google Analytics and Microsoft Application Insights, hosted on infrastructure linked to Active24 and websupport.cz. The site is mobile-optimized with good design and navigation but lacks some advanced SEO and accessibility features. Security posture is moderate; HTTPS is used, but no security headers were detected in the provided data, and there is no visible privacy or cookie policy, indicating compliance gaps. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy compliance measures.

S

Suomen käsityön museo

craftmuseum.fi

0

The website www.craftmuseum.fi represents the Finnish Handicraft Museum, a cultural institution dedicated to showcasing traditional and contemporary handicrafts, including Finnish national costumes. The site targets a general audience including families and cultural enthusiasts, providing exhibition information and educational content. Technically, the site is built on Drupal 10, uses Cloudflare for hosting and security, and integrates a comprehensive GDPR-compliant cookie consent mechanism. The site demonstrates good SEO practices and mobile optimization, although contact information and legal pages like terms of service are limited or absent. Security posture is solid with HTTPS and security headers, but lacks explicit security policy and vulnerability disclosure details. Overall, the domain registration aligns well with the museum's identity, indicating legitimacy and trustworthiness.

P

Parasta Lapsille ry

parastalapsille.fi

0

Parasta Lapsille ry is a well-established Finnish non-profit organization focused on child welfare and family well-being. The organization offers camps, weekend activities, and volunteer opportunities to support children and families, emphasizing multicultural inclusion. The website reflects a mature digital presence with clear branding, comprehensive content, and active social media engagement. Technically, the site is built on WordPress with modern plugins and is hosted behind Cloudflare, ensuring good performance and security. Privacy compliance is robust, featuring GDPR-aligned cookie consent and a detailed privacy policy. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the domain WHOIS data aligns well with the organization's identity, supporting high legitimacy and trust.

M

Martat

martat.fi

0

Martat is a Finnish non-profit organization dedicated to promoting home and family wellbeing and the appreciation of household management. The website serves as a comprehensive portal for membership, educational courses, events, publications, and community engagement. It targets Finnish households and families interested in sustainable and responsible living. The organization has a strong national presence with local chapters and a variety of services including international aid projects. Technically, the site is built on WordPress with WooCommerce and integrates modern JavaScript libraries and third-party services for analytics, feedback, and chat support. The site is well-optimized for SEO, mobile-friendly, and accessible. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

F

Fondation Sommer

fondation-sommer.lu

0

Fondation Sommer is a Luxembourg-based non-profit organization dedicated to supporting educational, cultural, and intercultural projects. The foundation operates primarily through grant funding and project support, targeting non-profit organizations and educational institutions within Luxembourg and its vicinity. The website is professionally designed using WordPress with Bootstrap and Font Awesome, supporting multilingual content via WPML. The technical infrastructure is modern and includes performance optimizations such as WP Rocket. Security posture is adequate with HTTPS enforced and some security best practices observed, though explicit security headers and incident response information are lacking. Privacy and cookie policies are not found, indicating a gap in compliance with GDPR requirements. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy and security disclosures.

C

Czech Union of the Deaf, z.ú.

cun.cz

0

The Czech Union of the Deaf, z.ú. is a well-established non-profit organization dedicated to supporting the deaf community in the Czech Republic. Their website presents a clear and professional overview of their services, including activation services, sign language interpreting, simultaneous transcription, educational courses, and publications. The organization maintains multiple regional branches and active social media presence, indicating a strong community engagement and outreach. Technically, the website is built on WordPress with WooCommerce integration for e-commerce functionality, leveraging common web technologies such as jQuery and Google Fonts. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks advanced security headers and explicit privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data is a notable concern, reducing domain registration transparency and trustworthiness. Overall, the website is functional, trustworthy, and serves its community well, but could improve in privacy compliance and security best practices.

H

HESTIA

hest.cz

0

HESTIA is a Czech non-profit organization established in 2001, specializing in volunteer services, coordination, and educational programs. The website presents a well-structured platform offering multiple volunteer programs, corporate volunteering initiatives, and training courses. It targets volunteers, non-profit organizations, companies interested in corporate social responsibility, donors, and media. The organization maintains partnerships with government bodies and foundations, enhancing its credibility and market position within the Czech Republic's volunteer sector. Technically, the website uses a custom CMS (Toolkit) hosted by ECN Studio, with integration of Google Analytics and Google Tag Manager for visitor tracking. The site is mobile-optimized with good navigation and content quality. However, some technical improvements are recommended, including the implementation of security headers and enhanced accessibility features. From a security perspective, the site uses HTTPS (implied by external Google Analytics scripts loaded over HTTPS), has a cookie consent mechanism compliant with GDPR, and does not expose sensitive data. There is no visible security or incident response policy, and no contact emails or phone numbers are provided on the homepage, which could be improved for transparency and user trust. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and providing clearer contact information to improve user confidence and compliance posture.

O

Open House Europe

openhouseeurope.org

0

Open House Europe is a non-profit cultural organization founded in 2023 and coordinated by the Public institution Architektūros fondas in Lithuania. It operates a network of architecture festivals across Europe, focusing on themes such as sustainability, accessibility, inclusion, and future heritage. The organization engages the public through events, volunteer programs, and annual summits, supported by European cultural funding and media partnerships. The website reflects a professional and consistent brand presence with rich content targeting architecture enthusiasts and the general public interested in urban heritage. Technically, the website is built on WordPress with modern technologies including Bootstrap, jQuery, and Lottie animations. It uses Yoast SEO for optimization and integrates Google Analytics and MailerLite for marketing and analytics. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site uses HTTPS with a valid SSL certificate and employs secure form handling with nonce tokens. However, DNSSEC is not enabled, and security headers are not explicitly detected. There is no visible security or incident response policy, and no cookie consent mechanism is implemented, which may impact GDPR compliance. The WHOIS data is consistent with the organization's claims, showing a legitimate and recently registered domain. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation but could improve in privacy compliance and security best practices to enhance trust and regulatory adherence.

D

DRUŠTVO CRVENOG KRIŽA ZAGREBAČKE ŽUPANIJE

dck-zagrebacka-zupanija.hr

0

The website represents the Croatian Red Cross Society of Zagreb County, a regional non-profit organization dedicated to humanitarian aid, blood donation, and volunteering. It serves the general public in Zagreb County and provides information and services aligned with the Red Cross mission. The site is built on a WordPress platform using modern themes and plugins, including Elementor and Modern Events Calendar Lite, indicating a moderate level of digital maturity. Accessibility features and GDPR-compliant cookie consent mechanisms are implemented, reflecting attention to user experience and privacy. Security posture is good with HTTPS enabled and no visible vulnerabilities, though some security headers could be improved. Overall, the site is trustworthy and professionally maintained, with clear branding and consistent content.

D

Društvo Crvenog križa Varaždinske županije

dck-vz.hr

0

Društvo Crvenog križa Varaždinske županije is a regional branch of the Croatian Red Cross, providing humanitarian aid, first aid training, blood donation campaigns, and volunteer coordination primarily for the Varaždin County community. The website is built on WordPress with common plugins such as Yoast SEO and Contact Form 7, featuring a modern design and good mobile responsiveness. Security posture is solid with HTTPS enforced and Google reCAPTCHA protecting forms, though additional HTTP security headers could improve defenses. Privacy compliance is evident with a cookie consent banner and a privacy policy page aligned with GDPR requirements. Contact information including emails, phone, and physical address is clearly presented, enhancing business credibility.

H

Hrvatski Crveni križ Društvo Crvenog križa Osječko-baranjske županije

dckobz.hr

0

Hrvatski Crveni križ Društvo Crvenog križa Osječko-baranjske županije is a regional humanitarian non-profit organization operating in Croatia's Osječko-baranjska županija. The organization focuses on community support, youth engagement, first aid training, disaster response, blood donation, and social welfare activities. Their website reflects a well-structured and content-rich platform that communicates their mission, projects, and news effectively to the general public and stakeholders. The organization maintains a consistent brand presence and provides multiple contact channels including email, phone, and a contact form, supported by active social media profiles.

H

Hrvatski Crveni križ - Gradsko društvo Crvenog križa Čakovec

crveni-kriz-cakovec.hr

0

The website www.crveni-kriz-cakovec.hr represents the Gradsko društvo Crvenog križa Čakovec, a local branch of the Croatian Red Cross. It provides humanitarian services including blood donation campaigns, volunteer coordination, social and health programs, and emergency response. The organization is well-established with a domain registered since 2009 and operates primarily in Croatia. The website targets the general public, volunteers, and vulnerable groups within the region. Technically, the site is built on WordPress with a modern plugin ecosystem, including accessibility and cookie consent tools, ensuring compliance with GDPR and accessibility standards. Security posture is good with HTTPS enforced and cookie consent mechanisms, though additional security headers could enhance protection. The site uses Google Analytics for user tracking with moderate privacy compliance. Overall, the website is professional, trustworthy, and serves as a reliable information and engagement platform for the Croatian Red Cross local branch.

D

Društvo Crvenog križa Krapinsko-zagorske županije

dckkzz-krapina.hr

0

Društvo Crvenog križa Krapinsko-zagorske županije is a regional non-profit humanitarian organization serving the Krapinsko-zagorska County in Croatia. The organization coordinates local Red Cross societies and provides key services such as blood donation campaigns, social welfare activities, emergency response, and addiction prevention programs. It also manages EU-funded projects to enhance its infrastructure and outreach. The website reflects a well-structured and content-rich platform that supports community engagement and transparency. Technically, the website is built on WordPress 6.8.1 with a modern tech stack including jQuery and several plugins for event management and content display. The site is mobile-optimized and uses HTTPS, ensuring secure communication. However, some security headers are not explicitly detected, and there is no cookie consent mechanism, which could be improved for better privacy compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and nonce usage in AJAX calls. The absence of exposed sensitive data and vulnerabilities in the visible content is positive. The WHOIS data is privacy protected, which is common for non-profits, but limits transparency. No incident response or security policies are published, which could be a gap in organizational security posture. Overall, the website is professional, trustworthy, and serves its community well. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

D

Društvo Crvenog križa Istarske županije

hck-istra.hr

0

Društvo Crvenog križa Istarske županije is a well-established regional humanitarian non-profit organization based in Croatia, focusing on blood donation, first aid, disaster response, and community social programs. With over 30 years of operation, it holds a strong market position in Istria County, supported by volunteers and partnerships. The website reflects a professional and consistent brand image, providing clear information and contact details to its audience. Technically, the site uses modern open-source libraries and frameworks like Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. Security posture is moderate with room for improvement in HTTP security headers and documented security policies. Privacy compliance is strong, featuring GDPR-aligned privacy and cookie policies. Overall, the website is trustworthy, safe, and serves its community-focused mission effectively.

L

Living Room Conversations

livingroomconversations.org

0

Living Room Conversations is a US-based non-profit organization established in 2011, dedicated to fostering community dialogue and understanding through structured conversations. Their website serves as a platform to provide resources and frameworks to individuals and organizations interested in facilitating meaningful conversations. The organization operates in the non-profit sector with a focus on community engagement and education. Technically, the website is built on WordPress using popular plugins such as Elementor and GiveWP, hosted on SiteGround, and employs Google Analytics for visitor tracking. The site is mobile-optimized and presents a professional design with good navigation and content relevance. Security-wise, the site enforces HTTPS and has domain protections in place but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

Veganopolis is a Croatian non-profit online platform operated by the association Prijatelji životinja, dedicated to promoting veganism and plant-based lifestyles. The website offers a variety of community and educational services including a vegan product guide, a 30-day vegan challenge, vegan buddy support, nutritionist advice, cooking workshops, and vegan restaurant listings. The target audience is primarily Croatian-speaking individuals interested in veganism and animal rights. The platform positions itself as a niche non-profit resource with a focus on community engagement and education. Technically, the website uses a traditional tech stack including jQuery 1.10.2, Bootstrap, and Google Fonts. It is mobile optimized with good navigation and content quality, though some technologies are outdated. No CMS or hosting provider details are evident. The site lacks advanced security headers and explicit privacy or terms of service pages, though it includes a cookie consent banner. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS (assumed), employs POST methods for forms, and does not expose sensitive data. However, the absence of security headers and use of an outdated jQuery version present moderate risks. The WHOIS data is missing or indicates the domain is unregistered, which is inconsistent with the active website and raises concerns about domain legitimacy. Overall, the security posture is moderate but could be improved with better policies and technical controls. The overall risk is moderate with recommendations to verify domain registration status, implement security headers, update libraries, and publish privacy and security policies. The site is safe for general audiences and serves a clear non-profit mission with good business credibility.

AnimaList is a Croatian non-profit newsletter platform operated by the animal rights association Prijatelji životinja. The website focuses on promoting veganism, animal welfare, and environmental sustainability through educational content, activism updates, and event announcements. The organization targets animal rights advocates and environmentally conscious individuals primarily in Croatia. Technically, the site is built on WordPress with common plugins and uses HTTPS, but lacks advanced security headers and privacy compliance features such as a privacy policy or cookie consent. The WHOIS data is privacy protected, which is typical for non-profits, but limits transparency. Overall, the website is functional, content-rich, and trustworthy but could improve in privacy compliance and security best practices.

The website www.oipa.org represents the Organizzazione Internazionale Protezione Animali (OIPA), an international non-profit organization dedicated to animal protection and environmental advocacy. The organization is affiliated with several United Nations bodies and the European Commission, indicating a credible international presence. The website content is focused on promoting animal welfare, opposing vivisection, and encouraging vegetarian and vegan lifestyles. The site is simple and functional but lacks advanced technical features or modern CMS frameworks. No forms or contact details are provided, limiting direct engagement opportunities. From a technical perspective, the website shows basic implementation with no detected modern technologies or CMS. The performance and mobile optimization are moderate to basic, with no evidence of security headers or HTTPS enforcement in the provided data. The absence of privacy and cookie policies indicates a gap in compliance with data protection regulations such as GDPR. Security posture is minimal with no visible security best practices or incident response information. The WHOIS data is unavailable due to a malformed request, which reduces transparency and trustworthiness, although the website's UN affiliations and content suggest legitimacy. No advertising or analytics scripts were detected, indicating minimal user tracking. Overall, the website is safe for general audiences and serves as an informational platform for the NGO. However, improvements in security, privacy compliance, and technical modernization are recommended to enhance trust and user engagement.

I

International Anti-Fur Coalition

antifurcoalition.org

0

The International Anti-Fur Coalition (IAFC) operates as a global non-profit animal rights advocacy group focused on ending the fur trade through activism, education, and legislative efforts. Founded in 2006, it unites over 50 organizations worldwide to organize campaigns and promote anti-fur legislation. The website serves as an informational and campaign platform, targeting animal rights supporters and the general public concerned with ethical fashion. Technically, the website is built on the Shopify platform, leveraging standard web technologies such as jQuery, Facebook SDK, and embedded YouTube content. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Analytics and tracking are implemented via Shopify Analytics and Facebook Pixel, indicating moderate user tracking. From a security perspective, the site enforces HTTPS and uses hCaptcha for form protection, but lacks explicit security headers and detailed privacy or cookie policies. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profit organizations. No critical vulnerabilities or malicious content were detected. Overall, the website presents a moderate risk profile with good content quality and business credibility but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

E

European Coalition to End Animal Experiments (ECEAE)

eceae.org

0

The European Coalition to End Animal Experiments (ECEAE) is a well-established non-profit umbrella organization founded in 1990, representing 18 animal protection and scientific organizations across Europe. Their mission focuses on abolishing animal experiments and promoting humane, animal-free research methods. The organization holds a recognized position with official stakeholder status in several EU bodies, enhancing their influence in policy and advocacy. The website reflects this mission with clear, relevant content targeted at animal welfare advocates, researchers, and policymakers. Technically, the website is built on Joomla CMS with a modern and responsive design, delivering a good user experience across devices. The infrastructure is moderate in performance, with no blocking or WAF challenges detected. However, some security best practices such as DNSSEC and security headers are missing, and no cookie consent mechanism is implemented, which is a compliance gap given GDPR relevance. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks published security policies or incident response contacts. The WHOIS data is transparent and consistent with the organization's identity and location, supporting legitimacy. Overall, the site is professional and trustworthy but could improve privacy compliance and security hardening. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent for GDPR compliance, and publishing security and incident response policies to enhance trust and compliance.

E

Eurogroup for Animals

eurogroupforanimals.org

0

Eurogroup for Animals is a pan-European non-profit advocacy organization dedicated to improving animal welfare and defending animal interests across Europe. The website serves as a platform to communicate their mission, campaigns, and policy initiatives to a broad audience including NGOs, policymakers, and the general public interested in animal welfare. The organization positions itself as a key voice in European animal advocacy with a focus on policy influence and public awareness. Technically, the website is built on Drupal 10, leveraging modern web technologies including Font Awesome for icons, Google Tag Manager for analytics, and Cookiebot for cookie consent management. The site demonstrates good digital maturity with mobile optimization, accessibility features, and a cookie consent mechanism that complies with GDPR requirements. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and implements cookie consent with granular user controls. However, explicit security headers like Content-Security-Policy and X-Frame-Options were not detected in the provided data, suggesting an area for improvement. No vulnerabilities or exposed sensitive data were found. The WHOIS data is unavailable or privacy protected, which is typical for non-profit organizations and does not raise immediate concerns. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it would benefit from enhanced security header implementation and clearer contact information. The risk profile is low, with no critical issues detected.

E

European Vegetarian Union

euroveg.eu

0

The European Vegetarian Union (EVU) is a well-established non-profit organization representing vegetarian and vegan associations across Europe. It focuses on advocacy, policy influence, and promoting plant-based diets with a clear emphasis on sustainability, health, and consumer protection. The website serves as a central hub for information, membership coordination, and news related to plant-based food systems in the EU. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The presence of Matomo and Google Analytics shows moderate user tracking for analytics purposes. Security-wise, the site employs HTTPS and several security headers, but lacks publicly available security policies or incident response information. Privacy compliance is incomplete due to missing privacy and cookie policies. Overall, the site is professional, trustworthy, and serves its niche audience effectively, though it would benefit from enhanced privacy disclosures and direct contact information.

M

Medina Helsinki Communications Oy

wespeakgay.com

0

We Speak Gay is a Finnish community platform operated by Medina Helsinki Communications Oy, focused on supporting LGBTQ+ inclusivity and rainbow-friendly communication in Finland. The website serves as a hub for businesses, organizations, and events that promote equality and safety for the rainbow community. It targets both residents and visitors, aiming to foster a safer and more inclusive society. The platform offers membership and partnership opportunities to entities committed to these values. Technically, the website is built on the Squarespace CMS platform, utilizing modern web technologies including Typekit fonts and Weglot for multilingual support. The site is well-optimized for mobile devices and includes standard SEO and accessibility features, though accessibility could be improved. Performance is moderate with no major issues detected. From a security perspective, the site enforces HTTPS with HSTS enabled, uses a cookie consent banner compliant with GDPR, and does not expose sensitive data or vulnerable libraries. However, it lacks explicit privacy policy and terms of service pages, and no security.txt or incident response contacts are provided. WHOIS data for the domain is unavailable, which slightly reduces trust but the website content and contact information support legitimacy. Overall, the website presents a professional and trustworthy front for a niche non-profit community platform. Strategic improvements in privacy documentation and WHOIS transparency would enhance trust and compliance.

E

Ekokompassi

ekokompassi.fi

0

Ekokompassi is a Finnish non-profit organization providing an industry-independent environmental management system tailored to organizations with expert assistance. The website reflects a focused service offering in environmental consultancy, targeting organizations seeking to improve their environmental practices. The domain is well-established since 2009 and registered transparently under Suomen luonnonsuojeluliitto ry, reinforcing trust and legitimacy. Technically, the site is built on WordPress with modern SEO and analytics tools, including Google Analytics, Hotjar, and Cookiebot for consent management. Security posture is good with HTTPS enforced and standard security practices, though DNSSEC is not implemented and no explicit security or incident response policies are published. Privacy compliance is basic with a cookie consent mechanism but lacks a clearly visible privacy policy or terms of service on the homepage. Overall, the site is professional, accessible, and trustworthy, with room for improvement in privacy transparency and DNS security.

O

Open House Praha, z. ú.

openhousepraha.cz

0

Open House Praha, z. ú. is a Czech non-profit organization dedicated to promoting architecture and urban culture through its annual Open House festival and year-round guided tours. The organization opens over 120 normally inaccessible buildings and spaces in Prague to the public, attracting a large audience and fostering community engagement. The website reflects a mature digital presence with comprehensive content, strong branding, and active social media integration. Technically, the site is built on WordPress with modern JavaScript libraries and includes analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are published. WHOIS data is unavailable, which slightly impacts trust but the organization's transparency and partner endorsements mitigate concerns. Overall, the site is professional, trustworthy, and well-positioned in its niche.

V

Volontaires.lu

volontaires.lu

0

Volontaires.lu is a Luxembourg-based volunteer service platform aimed at engaging youth in meaningful volunteer projects both locally and internationally. The website serves as an informational hub providing access to volunteer programs, mission listings, and training opportunities. It appears to be affiliated with government or official entities, supported by the presence of government logos and social media channels. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and uses Google Tag Manager and Matomo for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks visible security headers and explicit privacy or terms of service pages, which are areas for improvement. The WHOIS data is unavailable due to a malformed query, which slightly reduces trustworthiness but does not negate the legitimacy suggested by the content and branding. Overall, the site is professional and trustworthy but could enhance compliance and security transparency.

IN:CUBATOR is a small non-profit organization based in Luxembourg that supports youth initiatives and non-profit organizations by providing a comprehensive support package including coworking spaces, guidance, workshops, networking, and financial assistance. The website is built on WordPress using Elementor and presents a professional and consistent brand image targeted at young people up to 29 years old and youth sector organizations. Technically, the site uses modern web technologies but lacks some advanced security headers and privacy compliance features. The absence of WHOIS data limits domain trust analysis, but the presence of clear contact information and relevant content supports its legitimacy. Security posture is moderate with HTTPS enabled but missing some best practices. Privacy and cookie policies are not found, indicating compliance gaps.

M

Museum of the Rockies

museumoftherockies.org

0

Museum of the Rockies is a well-established cultural and educational institution located in Bozeman, US, focusing on natural history, cultural exhibits, and astronomy. The website presents a professional and informative platform targeting a general audience interested in museum experiences and educational programs. The domain has been registered since 2000, reflecting a stable and legitimate presence. Technically, the website employs modern tracking and analytics tools such as Google Analytics, Facebook Pixel, and Sojern, hosted on Montana State University DNS infrastructure, indicating a reliable hosting environment. However, the site lacks visible privacy and cookie policies, which impacts its compliance posture. Security-wise, HTTPS is properly implemented, but the absence of security headers and vulnerability disclosure mechanisms suggests room for improvement. Overall, the website is trustworthy and professionally maintained but should enhance privacy compliance and security best practices to reduce risk and improve user trust.

Verslo Frontas is a Lithuanian non-profit platform established in 2023 by the organization Blue/Yellow (VšĮ Mėlyna ir geltona) to facilitate regular financial support from Lithuanian businesses to Ukraine. The platform aims to reduce the burden on large donors by encouraging smaller, regular donations from a broader base of companies. It promotes social responsibility and supports Ukrainian business, education, culture, and community. The website is professionally designed using Hostinger Website Builder and the Astro framework, optimized for mobile devices, and provides clear contact information primarily via email and a Google Forms link for joining the initiative. Technically, the website uses modern web technologies and is hosted by Hostinger. It lacks advanced security headers and privacy compliance documentation, which are areas for improvement. No analytics or tracking scripts were detected, indicating minimal user tracking. The domain registration is recent but consistent with the business launch timeline and hosted by a reputable provider. Security posture is moderate with no critical vulnerabilities detected, but the absence of security headers and privacy policies reduces the overall security and compliance score. The website does not implement GDPR-compliant privacy or cookie policies, which is a compliance gap given its European audience. Overall, the site is trustworthy and serves its non-profit mission effectively but should enhance its security and privacy compliance to improve trust and legal adherence. Recommendations include implementing privacy and cookie policies, adding security headers, publishing incident response and vulnerability disclosure information, and ensuring strong SSL/TLS configuration.

U

Udruga Prijatelji životinja

prijatelji-zivotinja.hr

0

Udruga Prijatelji životinja is a well-established Croatian non-profit organization founded in 2001, dedicated to promoting animal rights, vegetarianism, and veganism. The website serves as a comprehensive platform for advocacy, education, event promotion, and community engagement, targeting environmentally and ethically conscious individuals. Their market position is strong within the Croatian and regional animal rights community, supported by memberships in European and international organizations. Technically, the website uses a custom or unknown CMS with a traditional tech stack including HTML, CSS, JavaScript, and jQuery, supplemented by Matomo analytics for privacy-conscious tracking. While the site is functional and moderately optimized, some outdated libraries present potential security risks. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and professional, with clear contact information and active social media presence.

C

Citizenconnect.us

citizenconnect.us

0

Citizen Connect is a small non-profit platform focused on nonpartisan civic engagement and political healing in the United States. It aggregates resources, events, and educational content from over 600 organizations to help Americans find ways to strengthen democracy. The website is built on a modern WordPress infrastructure with integrations such as Google Analytics and Tag Manager, hosted with GoDaddy and using Cloudflare DNS services. The platform demonstrates good technical maturity with responsive design and clear navigation, though it lacks published privacy and cookie policies, which impacts compliance. Security posture is solid with HTTPS and domain protections, but DNSSEC is not enabled and no explicit incident response or vulnerability disclosure information is provided. Overall, the site is trustworthy and professional but could improve privacy compliance and security transparency.

P

Planet Zemlja

planet-zemlja.hr

0

Planet Zemlja is a Croatian non-profit organization dedicated to environmental awareness, personal ecology, and ecological news dissemination. The website serves as a community platform offering news articles, event announcements, photo and video galleries, and educational content related to ecology. The target audience is the general public interested in environmental issues within Croatia. The business model is informational and community-driven without evident commercial transactions. Technically, the site uses a custom PHP-based CMS with jQuery and various plugins for RSS feeds, weather, and media galleries. External integrations include Google Analytics and Facebook SDK for tracking and social media engagement. However, the site lacks HTTPS on its main URLs, which is a significant security concern. Security headers are absent, and no advanced security or privacy compliance mechanisms are evident. Contact information is limited to forms without explicit emails or phone numbers. Overall, the site is functional but requires modernization and security improvements.

H

Hrvatski Crveni križ

hck.hr

0

Hrvatski Crveni križ is a well-established Croatian humanitarian organization with a strong national presence and a comprehensive portfolio of social, health, and crisis response services. The website reflects a mature digital presence with clear navigation, regional contact points, and integrated donation mechanisms. Technically, the site uses modern web technologies including Bootstrap, Google Analytics, and Google Maps API, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS enforced and privacy compliance evident through cookie consent and privacy policies. However, some security headers are missing and no explicit vulnerability disclosure or incident response contacts are published. Overall, the domain registration data aligns well with the organization's identity, supporting high legitimacy and trustworthiness.

W

Wellcome Collection

wellcomecollection.org

0

Wellcome Collection is a well-established non-profit cultural institution based in London, offering a free museum and library focused on health, science, medicine, and human experience. The website provides rich content including exhibitions, events, stories, and publications, targeting a broad audience interested in these themes. The organization maintains a strong market position as a reputable educational and cultural resource. Technically, the website is built on modern frameworks such as Next.js and Prismic CMS, hosted on AWS infrastructure, and incorporates advanced analytics and cookie consent mechanisms, reflecting a mature digital presence. Security posture is strong with HTTPS enforced and privacy-conscious analytics, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the site is professional, accessible, and trustworthy, with clear contact information and compliance with privacy regulations. Strategic recommendations include enhancing DNS security, publishing security policies, and maintaining vigilance on third-party scripts. The domain registration is privacy protected but consistent with legitimate use for a non-profit entity, with a domain age appropriate for the organization's history.

The website umdpl.info represents a Ukrainian human rights non-profit association named Асоціація УМДПЛ, also branded as “ФРІРАЙТС”. It focuses on digital rights, penitentiary oversight, legal education, criminal justice, and activist protection. The organization targets activists, government bodies, and the general Ukrainian public, providing educational resources, reports, and special projects. The domain is well-established since 2008, supporting the organization's credibility and longevity. Technically, the site runs on an outdated WordPress 4.4.2 CMS with older jQuery libraries, which introduces security risks. The site uses Google Analytics and Facebook SDK for tracking and social media integration. Mobile optimization and accessibility are basic, with moderate performance. No advanced SEO or modern frameworks are detected. Security posture is moderate but with notable gaps: HTTPS is enabled, but no DNSSEC, no security headers, and no cookie consent mechanisms are present. The outdated CMS and libraries increase vulnerability exposure. No explicit privacy or cookie policies were found, indicating compliance gaps with GDPR and related regulations. Overall, the site is functional and credible for its non-profit mission but requires technical and security modernization. Strategic improvements in security headers, CMS updates, privacy compliance, and user experience would enhance trust and reduce risk.

Л

Лабораторія цифрової безпеки

dslua.org

0

Лабораторія цифрової безпеки is a Ukrainian non-profit organization specializing in digital security and the protection of digital rights. The organization supports journalists, human rights defenders, and civil activists in Ukraine by providing expertise in digital security and advocating for human rights in the digital environment through policy influence. The website is professionally designed using WordPress and Elementor, with a clear focus on content relevant to its target audience. Social media integration is strong, enhancing outreach and engagement. Technically, the website employs modern web technologies including WordPress CMS, Elementor page builder, and Cloudflare DNS services. HTTPS is properly configured, ensuring secure communications. However, DNSSEC is not enabled, and security headers are absent, indicating room for improvement in security hardening. The site performs moderately well with good mobile optimization and basic accessibility features. From a security perspective, the site demonstrates a reasonable posture with HTTPS and domain registration protections in place. The absence of privacy and cookie policies, security headers, and explicit contact information for security incidents or data protection officers represents compliance gaps. No vulnerabilities or suspicious patterns were detected in the WHOIS data or site content. Overall, the site is trustworthy but would benefit from enhanced transparency and security practices. The risk assessment is moderate with recommendations to implement DNSSEC, security headers, privacy and cookie policies with consent mechanisms, and publish incident response contacts. These steps would improve compliance with GDPR and other data protection regulations, strengthen security posture, and enhance user trust.

E

European Prison Litigation Network

prisonlitigation.org

0

The European Prison Litigation Network (EPLN) is a specialized non-profit organization dedicated to defending and advancing prisoners’ fundamental rights across Europe. It operates as a network of around 30 civil society organizations and bar associations, focusing on legal advocacy, research, and policy engagement to improve prison conditions and reduce incarceration. The website reflects a professional and well-structured digital presence, supporting multiple languages and providing comprehensive legal resources and publications. Technically, the site is built on WordPress with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and WHOIS transparency are minor concerns. Overall, EPLN presents a credible and trustworthy online presence aligned with its advocacy mission.

I

International Partnership for Human Rights (IPHR)

iphronline.org

0

International Partnership for Human Rights (IPHR) is a Brussels-based independent NGO founded in 2008, focusing on human rights advocacy and support in Central Asia, Eastern Europe, and the South Caucasus. The organization empowers local civil society groups, conducts research and reporting on human rights violations, and engages in advocacy with international institutions. Their website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding. Technically, the site is built on WordPress, hosted on SiteGround, and uses modern SEO and GDPR compliance tools. Security posture is good with HTTPS and domain transfer protections, though DNSSEC is not enabled and some security headers appear missing. No direct contact emails or phone numbers are publicly listed, relying on contact forms and social media channels. Overall, the site is professional, trustworthy, and safe for general audiences.

D

demch.co

zbir.win

0

The analyzed website is a Google Forms page hosted on docs.google.com, designed to facilitate the creation of fundraising pages for non-profit organizations and volunteers, primarily targeting Ukrainian users. The service is provided by demch.co, a small company specializing in web solutions for non-profits since 2013. The form collects essential data such as nickname, page title, payment details, social media contacts, and email for notifications. The platform leverages Google's secure and scalable infrastructure, ensuring reliable hosting and HTTPS encryption. The website demonstrates good technical maturity with fast performance, mobile optimization, and accessibility features. Security posture is strong due to Google's platform protections, though explicit cookie consent and incident response information are not present on the form page. Overall, the site is trustworthy, professional, and serves a clear niche in the non-profit fundraising sector.

П

Принцип

pryncyp.com

0

The website www.pryncyp.org represents a Ukrainian non-profit legal advocacy center named "Принцип" focused on supporting military personnel and veterans through legal aid, policy advocacy, and educational initiatives. Founded in 2023 by Masі Nayem and Liubov Galan, the organization provides pro bono legal consultations, conducts analytical research, and promotes veteran policies. The site is professionally designed using WordPress CMS with multilingual support and integrates common web technologies such as jQuery, Swiper, and Select2. It leverages Google Analytics for user tracking and includes donation mechanisms via Patreon and Liqpay. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though the absence of security headers and explicit privacy/cookie policies indicates room for improvement. WHOIS data is unavailable, limiting domain trust verification, but the website's content, social media presence, and professional branding support its legitimacy. Overall, the site is well-positioned as a trusted resource for its target audience with moderate technical maturity and good user experience.

D

Deutsch-Ukrainische Gesellschaft

deutsch-ukrainische-gesellschaft.de

0

The Deutsch-Ukrainische Gesellschaft (DUG) is a small non-profit organization dedicated to fostering and deepening German-Ukrainian relations across politics, science, culture, and civil society. The organization offers expert dialogues, publications, cultural events, and exchange programs to promote mutual understanding and support Ukraine's integration into European and Euro-Atlantic structures. The website reflects a professional and consistent brand image, targeting stakeholders interested in German-Ukrainian cooperation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Contact Form 7, and GDPR Cookie Compliance, ensuring good SEO and privacy compliance. The site uses HTTPS with Google reCAPTCHA for form security and includes a cookie consent mechanism, indicating a mature digital infrastructure. Performance and mobile optimization are good, though some security headers could be improved. From a security perspective, the site demonstrates solid practices including HTTPS enforcement and GDPR compliance. However, no explicit security policy or incident response contacts are published, and security headers are not detected, suggesting room for enhancement. No vulnerabilities or suspicious content were found. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations, serving its niche audience effectively. Strategic improvements in security headers and transparency around security policies would further strengthen its posture.

T

The Giving Block

thegivingblock.com

0

The Giving Block is a specialized platform empowering nonprofits to accept cryptocurrency, stocks, and donor-advised fund (DAF) donations. Founded in 2018, it has established itself as a leading service provider in the nonprofit crypto donation space, offering secure and compliant donation forms tailored to the needs of nonprofits and their donors. The website reflects a professional and consistent brand image, targeting nonprofits and crypto donors with clear messaging and structured data to enhance search visibility. Technically, the website is built on WordPress using the Divi theme, supplemented by a variety of marketing and analytics tools including HubSpot, Google Analytics, Microsoft Clarity, and Hotjar. The domain is registered with GoDaddy and uses Cloudflare for DNS, indicating a robust hosting and domain management setup. Mobile optimization and SEO practices are good, though accessibility features are basic. From a security perspective, HTTPS is enabled and domain status flags protect against unauthorized changes. However, the site lacks explicit security headers, published security policies, and vulnerability disclosure mechanisms. Privacy compliance is limited due to the absence of visible privacy and cookie policies or consent mechanisms. The extensive use of tracking and marketing scripts suggests a moderate to extensive user tracking level, which should be balanced with stronger privacy disclosures. Overall, the site is credible and professionally managed but would benefit from enhanced privacy and security transparency to improve compliance and user trust. Strategic recommendations include enabling DNSSEC, publishing comprehensive privacy and cookie policies, implementing security headers, and establishing a vulnerability disclosure program.

E

Eko Kvarner

ekokvarner.hr

0

Eko Kvarner is a Croatian non-profit environmental organization focused on promoting sustainable energy, climate change awareness, and ecological protection in the Kvarner region. The website serves as an information hub providing news, activities, projects, and educational resources to local communities and stakeholders interested in environmental issues. The organization appears well-established with a domain registered since 2012 and clear contact information including physical address, phone numbers, and email. The site content is primarily in Croatian and targets regional audiences. Technically, the website uses an older CMS platform called Galaksija and relies on legacy JavaScript libraries such as jQuery and Fancybox. While the site is accessible and contains meaningful content, it loads some external scripts over unsecured HTTP, which introduces mixed content risks. The site lacks modern security headers and advanced privacy or cookie consent mechanisms, indicating room for improvement in security and compliance maturity. Hosting is provided by Totohost, a Croatian hosting provider, and the domain registrar is CARNET, a reputable Croatian academic network. From a security perspective, the site uses HTTPS but does not implement additional security headers or content security policies. No incident response or security policy pages are found, and no vulnerability disclosure or security.txt files are present. The WHOIS data is consistent with the website's business profile and geographic location, supporting legitimacy. No suspicious or malicious indicators were detected. Overall, the website is functional and provides valuable content for its target audience but would benefit from technical modernization, improved security practices, and enhanced privacy compliance to strengthen trust and resilience against threats.