Non-profit security reports

S

SES

ses.se

0

SES (Sponsrings & Eventsverige) is a well-established Swedish non-profit membership organization focused on sponsorship, events, partnerships, and trade shows. It serves a broad ecosystem including companies, rights holders, agencies, suppliers, destinations, venues, and expo actors, aiming to strengthen business and advance the industry. The website reflects a mature digital presence with a clear business model centered on membership benefits, networking, education, and industry events such as the Gyllene Hjulet competition. Technically, the site is built on WordPress with modern plugins and themes, optimized for SEO and mobile use, hosted by a reputable provider. Security posture is good with HTTPS and secure forms, though some security headers and vulnerability disclosure mechanisms could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact channels and privacy policies.

I

International Association of Antarctica Tour Operators

iaato.org

0

The International Association of Antarctica Tour Operators (IAATO) operates a well-established website focused on promoting safe and environmentally responsible private-sector travel to Antarctica. Founded in 1991, IAATO serves as a membership organization providing resources such as member and vessel directories, visitor guidelines, and scientific fellowship programs. The website reflects a strong market position as a leading global association in Antarctic tourism, targeting tour operators, tourists, and environmental stakeholders. Technically, the website is built on Drupal 10 with Bootstrap 5, leveraging modern web technologies and frameworks. It demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. The site uses Google Tag Manager for analytics and implements a cookie consent mechanism aligned with GDPR requirements. From a security perspective, the site employs HTTPS and session cookies for logged-in users but lacks visible security headers and published security policies. The WHOIS data confirms domain legitimacy with a long registration history and consistent organizational information. No critical vulnerabilities or exposed sensitive data were detected. Overall, IAATO's website is professional, trustworthy, and compliant with privacy standards, though it could improve by enabling DNSSEC, adding security headers, and publishing formal security and incident response policies.

U

UNICEF Sverige

unicef.se

0

UNICEF Sverige is the Swedish national committee of UNICEF, dedicated to protecting children's rights and providing humanitarian aid in 190 countries. The organization operates as a large non-profit entity with a strong market position and a well-established brand. Their website offers multiple donation options, educational resources, and advocacy information targeting the general public, companies, and schools. Technically, the site is built on modern frameworks like Next.js and React, with integrations for analytics and A/B testing via Google Tag Manager and Optimizely. The site is mobile-optimized and accessible, with good SEO practices. Security-wise, the site uses HTTPS and secure forms but lacks DNSSEC and explicit security policies. Overall, the domain registration is consistent with the organization's identity, showing a long-standing and legitimate presence.

Ateneo Mercantil de Valencia is a well-established cultural institution located in Valencia, Spain, offering a diverse range of cultural events, conferences, exhibitions, and social activities. The organization also provides event salon rentals and restaurant services, targeting members and the local community. The website reflects a professional and consistent brand image with clear navigation and relevant content for its audience. Technically, the site is built on the Odoo CMS platform, utilizing modern web technologies and integrating multiple advertising and analytics tools, including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized and accessible, though some security headers could be improved. Security posture is good with HTTPS enforced and reCAPTCHA implemented on forms, but explicit security policies and incident response information are absent. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. WHOIS data is restricted due to Red.es policies for .es domains, but the domain usage and website content appear legitimate and consistent with the institution's profile.

A

ACdP | Asociación Católica de Propagandistas

acdp.es

0

The Asociación Católica de Propagandistas (ACdP) is a Spanish non-profit organization dedicated to Catholic propagation and community engagement. The website serves as a digital platform to inform visitors about the association's mission and to facilitate donations. It targets the Spanish-speaking Catholic community and supporters. The organization maintains a moderate-sized online presence with active social media channels and a donation system integrated via GiveWP. Technically, the website is built on WordPress 6.7.1, leveraging popular plugins such as Yoast SEO for search optimization and Cookiebot for cookie consent management, indicating a reasonable level of digital maturity. The site uses Google Analytics and Google Tag Manager for visitor tracking and marketing purposes. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features could be improved. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms, aligning with GDPR requirements. However, the absence of a publicly accessible privacy policy, terms of service, and security policy pages represents gaps in compliance and transparency. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website presents a trustworthy and professional front for the ACdP organization, but it would benefit from enhanced privacy and security disclosures to improve compliance and user trust. Strategic recommendations include publishing comprehensive privacy and terms policies, adding incident response contacts, and improving accessibility standards.

A

Arbeiter-Samariter-Jugend Deutschland

asj.de

0

Arbeiter-Samariter-Jugend Deutschland (ASJ) is a well-established non-profit youth organization affiliated with the Arbeiter-Samariter-Bund (ASB). The website serves as an information hub for youth engagement, educational projects, and community services across Germany. It targets young people and members interested in social and democratic participation. The organization maintains a consistent brand presence and provides relevant content such as campaigns, publications, and event information. Technically, the site is built on Drupal 10, uses Matomo for privacy-conscious analytics, and Klaro! for cookie consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and privacy compliance evident, although explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-optimized for users.

A

ASB Deutschland e.V.

wuenschewagen.de

0

Der Wünschewagen is a non-profit project operated by ASB Deutschland e.V. that fulfills last wishes of terminally ill people by providing free transportation to their desired locations. Established in 2014, it operates 23 regional vehicles across Germany, supported by nearly 2,000 volunteers and funded exclusively through donations. The website is professionally designed, mobile-optimized, and provides comprehensive information about the project, donation options, volunteer opportunities, and regional contacts. Technically, the site uses Concrete CMS with modern libraries like jQuery, Bootstrap, and Vue.js, and implements cookie consent and third-party content blocking mechanisms. Security posture is good with HTTPS enforced, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site demonstrates high trustworthiness and strong alignment between domain registration and business claims.

M

Maskrosbarn

maskrosbarn.org

0

Maskrosbarn is a Swedish non-profit organization dedicated to supporting children and youth aged 13-19 who have parents suffering from mental illness, addiction, or who expose them to violence. The organization offers a range of services including chat support, educational materials, activities, and advocacy efforts. It operates regionally in Stockholm, Göteborg, Malmö, and provides nationwide support. The website is well-structured, professionally designed, and targets both youth and adults interested in supporting them. The organization holds recognized certifications such as 90-konto and Tryggt Givande, enhancing its trustworthiness. Technically, the website is built on WordPress with modern technologies including React and jQuery. It uses Yoast SEO for optimization and Cookiebot for cookie consent management. Hosting is provided via Loopiagroup nameservers. The site is mobile-optimized and performs moderately well. Analytics and marketing tools include Google Tag Manager, Snapchat Pixel, and LinkedIn Insight Tag, with moderate user tracking and good privacy compliance. From a security perspective, the site enforces HTTPS with an excellent SSL configuration but lacks DNSSEC and security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. However, there is no visible incident response or vulnerability disclosure information. Overall, the website presents a low-risk profile with a strong business credibility and good technical implementation. Recommendations include enabling DNSSEC, adding security headers, publishing incident response contacts, and providing a terms of service page to further enhance trust and security posture.

L

Labdarības fonds "Zīļuks"

lfz.lv

0

Labdarības fonds "Zīļuks" is a Latvian non-profit organization established in 2015, dedicated to promoting philanthropy and supporting social welfare projects, primarily focused on creating children's playgrounds in regional towns and villages. The foundation operates through donations and community engagement, targeting families and local communities in Latvia. The website reflects this mission with relevant content and donation mechanisms but lacks comprehensive privacy and security policies. Technically, the site is built on Drupal 7 with legacy JavaScript libraries, which may pose security risks. The presence of HTTPS and cookie consent mechanisms indicates basic compliance with privacy standards, though no formal privacy policy or terms of service are published. Overall, the site is functional and trustworthy but would benefit from modernization and enhanced security and compliance documentation.

F

Fundación Haz

hazfundacion.org

0

Fundación Haz is a Spanish non-profit organization dedicated to promoting transparency, good governance, and social impact through consulting, training, publications, and certifications. The website is professionally designed, well-structured, and targets institutions and individuals interested in governance and transparency. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and marketing tools such as Google Analytics and Mailchimp. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust verification, but the website's content quality and external references support its legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant.

O

Ostmann Stiftung

ostmann-stiftung.de

0

Ostmann Stiftung is a small non-profit foundation focused on providing unbureaucratic support to people in need within the Nordhessen region of Germany. The foundation primarily offers financial assistance for ambulatory and stationary care services, supporting elderly individuals, people with disabilities, and employees of the Ostmann automotive group in distress. The website presents a professional and regionally focused image with clear descriptions of its mission and recent activities. Technically, the site uses modern web technologies including Bootstrap and Usercentrics for GDPR-compliant cookie management, hosted on netcup infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security policies and incident response information are absent. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations.

A

AWO Nordhessen

awo-nordhessen.de

0

AWO Nordhessen is a regional non-profit organization focused on social services and community support in the Nordhessen region of Germany. The website serves as an informational and membership platform, emphasizing core social values such as freedom, justice, tolerance, and solidarity. The organization holds an important position in the regional social service sector, providing economic and societal contributions as a member-based association. The website is built on TYPO3 CMS, indicating a mature and stable technical infrastructure. The presence of Cookiebot for cookie consent management and integration of Google Analytics and Meta Pixel demonstrate a moderate digital maturity with attention to privacy compliance, although no explicit privacy policy or terms of service pages were detected in the provided content. Security posture is moderate with room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and well-branded, targeting a general audience interested in social welfare and community engagement.

A

Arbeiter-Samariter-Bund Deutschland e. V.

asb.de

0

Arbeiter-Samariter-Bund Deutschland e. V. (ASB) is a well-established non-profit welfare and emergency aid organization in Germany. The organization provides a wide range of social services including care, child and youth services, help for people with disabilities, rescue services, disaster protection, first aid training, home emergency call services, international aid, and volunteer engagement. ASB holds a strong market position as a traditional yet modern welfare organization with a large operational size and a clear focus on serving the general public in Germany. The website reflects this with comprehensive content, consistent branding, and clear navigation.

M

Marcia per la pace

perugiassisi.org

0

The website www.perugiassisi.org represents a well-established non-profit organization dedicated to promoting peace and fraternity through the historic Marcia PerugiAssisi. The organization targets a broad audience including individuals, schools, groups, and local entities interested in social activism and peace initiatives. The site offers donation options, event information, and engagement opportunities, reflecting a mature digital presence. Technically, the site is built on WordPress with Elementor and several plugins, providing a modern and responsive user experience with good SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers and vulnerability disclosure policies could be improved. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of organization. The website is trustworthy, professional, and safe for general audiences.

C

Comité de la Charte du Don en confiance

donenconfiance.org

0

Don en Confiance is a French non-profit organization dedicated to promoting ethics, recognition, and continuous oversight of organizations soliciting donations. It operates a trust label that certifies and monitors 99 organizations, providing donors with assurance about the legitimacy and transparency of charitable entities. The website is professionally designed, well-branded, and targets donors, charitable organizations, and journalists. It leverages modern web technologies including jQuery, Google Analytics, and reCAPTCHA to provide a secure and user-friendly experience. However, the absence of a publicly accessible privacy policy and WHOIS data limits full trust assessment. Security posture is moderate with HTTPS and reCAPTCHA implemented but lacks security headers and incident response information. Overall, the site is trustworthy and serves an important role in the French non-profit sector, but improvements in privacy transparency and security best practices are recommended.

L

La Cimade

migrantscene.org

0

Festival Migrantscene is a cultural and social awareness festival organized by the non-profit organization La Cimade, focusing on migration themes through artistic and community events across France. The website serves as an information hub for the festival, providing event details, regional activities, and multimedia resources. The technical infrastructure is based on WordPress CMS with modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and uses HTTPS, but lacks some advanced security headers and explicit incident response information. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy in French, consistent with GDPR requirements. Overall, the website is professional and trustworthy, though the absence of WHOIS data limits domain trust assessment.

R

Rainforest Trust

rainforesttrust.org

0

Rainforest Trust is a well-established non-profit organization dedicated to the purchase and protection of threatened tropical rainforests worldwide. With over 30 years of experience, it has protected millions of acres and thousands of species through strategic partnerships and community engagement. The website reflects a mature digital presence with strong branding, comprehensive content, and clear calls to action for donations and involvement. Technically, the site is built on WordPress with modern SEO and analytics tools, ensuring good performance and accessibility. Security posture is strong with HTTPS, cookie consent mechanisms, and use of CAPTCHA for forms, though explicit security headers could be further confirmed. The absence of WHOIS data is likely due to privacy protection, which is common and justified for non-profits. Overall, the site is trustworthy, professional, and compliant with privacy regulations.

F

Fondation Tara Océan

fondationtaraocean.org

0

Fondation Tara Océan is a reputable non-profit organization focused on ocean exploration and environmental awareness. Established in 2019, it conducts scientific expeditions and educational outreach to promote ocean conservation. The website reflects a professional and consistent brand image, targeting a broad audience including the general public, scientists, and educators. The foundation operates primarily in France and maintains a medium organizational size. Technically, the website is built on WordPress, leveraging modern analytics and tracking tools such as Google Analytics, Hotjar, and Google Tag Manager, with appropriate consent mechanisms in place. Hosting is provided by OVH sas, a well-known provider, and the site uses HTTPS with a good SSL configuration.

P

proste.NGO

proste.ngo

0

proste.NGO is a Polish non-profit organization dedicated to simplifying the formal and legal conditions for Polish non-governmental organizations. The website serves as an advocacy and informational platform targeting NGOs and social activists in Poland. The business model is focused on non-profit advocacy and support, with a clear niche in the Polish NGO sector. The website is built on WordPress using modern plugins such as Yoast SEO and W3 Total Cache, indicating a moderate level of digital maturity. The design is professional and mobile-optimized, with good SEO practices implemented. Security posture is moderate; HTTPS is used, but security headers and explicit privacy policies are missing, representing areas for improvement. No WAF or blocking mechanisms were detected, and the domain registration data aligns well with the website's claims, supporting legitimacy. Overall, the site is functional and credible but would benefit from enhanced privacy compliance and security hardening.

D

Deutsch-Griechisches Jugendwerk (DGJW)

dgjw-egin.org

0

The Deutsch-Griechisches Jugendwerk (DGJW) is a non-profit organization dedicated to fostering youth exchange and cooperation between Germany and Greece. Their website clearly communicates their mission to promote understanding and collaboration among young people and youth workers in both countries. The organization offers various programs including youth encounters, professional development for youth workers, internships, and project funding. Their market position is niche but well-defined within the international youth work sector. Technically, the website is built on WordPress with modern plugins such as WPBakery Page Builder and W3 Total Cache, ensuring a responsive and performant user experience. Privacy and compliance are well addressed with GDPR-compliant privacy and cookie policies, and the use of Matomo analytics with explicit consent mechanisms. The site is hosted with a reputable registrar and uses HTTPS with good SSL configuration. From a security perspective, the site follows best practices including HTTPS, reCAPTCHA on forms, and cookie consent management. However, there is room for improvement by enabling DNSSEC and adding additional HTTP security headers. No vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a strong security posture suitable for a non-profit organization. The overall risk assessment is low with no critical issues found. Strategic recommendations include enhancing DNS security, implementing additional security headers, and publishing a vulnerability disclosure policy to further strengthen trust and security culture.

Α

ΑΜΚΕ ΙΑΣΙΣ

iasismed.eu

0

The website www.iasismed.eu represents ΑΜΚΕ ΙΑΣΙΣ, a small non-profit organization founded in 2005 in Greece, focused on providing psychosocial rehabilitation and counseling services to individuals in need. The organization emphasizes therapeutic and community support services, including food provision and training sessions. The website content is primarily in Greek with English language support, reflecting a localized target audience. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and includes a cookie consent mechanism, but lacks visible security headers and formal privacy or terms of service documents, which are areas for improvement. Overall, the site is accessible without WAF or blocking, and the domain WHOIS data is privacy protected as per EURid policies, which is typical for European domains. The absence of direct contact information and formal policies slightly reduces trust but does not critically impair the site's credibility.

D

Danube Civil Society Forum

danubestrategy.eu

0

The Danube Civil Society Forum is a non-profit organization dedicated to supporting civil society organizations within the Danube basin, promoting participation and networking aligned with the European Union Strategy for the Danube Region. The website serves as an information and event platform, highlighting key activities such as the Danube Participation Day and National Participation Days. It maintains a consistent brand presence and is recognized as a stakeholder in the EU regional cooperation framework. Technically, the website is built on the Squarespace platform, leveraging its CMS and associated technologies such as YUI JavaScript libraries and Typekit fonts. The site demonstrates good mobile optimization and a moderate performance profile, with a clean design and clear navigation. SEO practices are adequately implemented, though accessibility features are basic. From a security perspective, the site enforces HTTPS but lacks several important security headers such as HSTS and Content Security Policy. No explicit security or incident response policies are published, and no vulnerability disclosure mechanisms are evident. Cookie consent is implemented with opt-in and opt-out options, indicating some level of privacy compliance, though no privacy policy or terms of service pages were found. Overall, the website presents a trustworthy and professional front for a small non-profit organization with a clear mission. However, improvements in security headers, privacy documentation, and incident response transparency are recommended to enhance trust and compliance.

C

Comunità Papa Giovanni XXIII

apg23.org

0

Comunità Papa Giovanni XXIII is a well-established international non-profit organization founded in 1968, dedicated to supporting vulnerable populations such as the poor, marginalized, and abandoned children through various social initiatives including family homes and therapeutic communities. The website reflects a mature digital presence with comprehensive content, clear navigation, and active engagement channels for donations and volunteering. Technically, the site is built on WordPress with modern plugins and tracking tools, offering a good user experience and mobile optimization. Security posture is solid with HTTPS and consent management, though some security headers and policies could be improved. The absence of WHOIS data limits domain registration insights, but the overall trustworthiness and professionalism of the site indicate legitimacy. Strategic recommendations include enhancing security headers, publishing privacy and incident response policies, and improving accessibility compliance.

RefugeeHelp is a small non-profit organization focused on providing assistance and resources to refugees, primarily targeting individuals seeking support in the Netherlands. The website is built using modern web technologies, notably Angular, and integrates analytics and tracking tools such as Google Tag Manager and Crazy Egg to monitor user interactions and improve service delivery. While the site demonstrates good design quality and mobile optimization, it lacks comprehensive privacy and security policies, which are critical for trust and compliance in the humanitarian sector. Security posture is moderate with HTTPS enabled but missing key security headers and incident response information. Overall, the website is functional and professional but would benefit from enhanced security and privacy transparency to strengthen user trust and regulatory compliance.

CBF is a well-established Dutch non-profit organization specializing in oversight and certification of charitable organizations, ensuring donor trust and transparency. The website reflects a strong market position as the leading authority for charity certification in the Netherlands, offering services such as the CBF-Erkenning certification, donor guidance, research, and municipal support. The digital infrastructure is modern and performant, leveraging Google Tag Manager, Cookiebot for consent management, and ReadSpeaker for accessibility. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS, DNSSEC, and no visible vulnerabilities, although explicit security policies and incident response details are not published. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact and accreditation information.

F

Fondazione Luigi Einaudi

fondazioneeinaudi.it

0

Fondazione Luigi Einaudi is a well-established Italian non-profit foundation dedicated to supporting research and education in social sciences. Founded in 1964, it offers extensive resources including a large library, archives, scholarships, publications, and organizes academic events. The website reflects a professional and consistent brand image targeting researchers, academics, and students interested in social sciences. The foundation maintains a strong market position as a reference point in its sector in Italy. Technically, the website employs modern technologies such as Google Tag Manager and Iubenda for privacy compliance, with good mobile optimization and moderate performance. The site uses HTTPS with strong security headers and cookie consent mechanisms, indicating a mature digital infrastructure. However, no explicit CMS or hosting provider was identified. From a security perspective, the site demonstrates good practices including HTTPS enforcement, security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. However, the absence of a terms of service page and incident response information are minor gaps. Overall, the website is trustworthy, content-rich, and professionally maintained with a strong focus on privacy and security. The risk level is low, but improvements in transparency around security policies and incident response would enhance trust further.

Stiftung Zukunft Berlin is a German non-profit foundation dedicated to promoting democracy through civic engagement and collaboration focused on the future of Berlin and its region. The foundation operates various initiatives and work areas including city and regional development, education, youth, democracy participation, and digital culture. The website reflects a professional and consistent brand presence with a clear mission and active social media engagement. Technically, the site is built on WordPress with modern plugins for SEO, cookie compliance, and newsletter management, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The domain WHOIS data is privacy protected, which is typical and justified for this type of organization. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

F

Federalistes d’Esquerres

federalistesdesquerres.org

0

Federalistes d’Esquerres is a small non-profit political organization advocating for a federal and socially just Europe, primarily targeting Catalan and European left-wing audiences. The website serves as a platform for news, opinion articles, events, and educational resources related to federalism. It maintains a consistent brand presence and active social media engagement. Technically, the site is built on WordPress with a modern tech stack including popular plugins and themes, hosted likely by CDmon. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS and reCAPTCHA usage, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy. Overall, the website is trustworthy and professional, with room for improvement in security and privacy transparency.

Ευρωπαϊκή Έκφραση is a well-established Greek non-profit organization founded in 1989, focusing on social programs, youth empowerment, and volunteering activities within Greece, Cyprus, and the broader European context. The website reflects a professional and consistent brand presence with clear navigation and relevant content targeted at socially engaged citizens and volunteers. Technically, the site employs modern JavaScript libraries such as jQuery, Owl Carousel, and FancyBox, integrates Google Tag Manager for analytics, and uses CookieScript for GDPR-compliant cookie consent management. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit security policies are absent. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high business credibility and trustworthiness with transparent contact information and partner affiliations.

L

Latvijas Pilsoniskā alianse

nvo.lv

0

Latvijas Pilsoniskā alianse is the largest non-profit organization in Latvia dedicated to the growth of civil society and democracy. The organization provides a broad range of services including an informative platform with news, podcasts, and multimedia content, member services, civic dialogue facilitation, and educational programs. Their market position as a leading civic society entity in Latvia is supported by active event management and strong social media presence. Technically, the website is built on WordPress with modern plugins and technologies, offering good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS, cookie consent, and bot protection, though improvements in HTTP security headers and formal security policies are recommended. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

A

Agora CE

agorace.cz

0

Agora CE is a Czech non-profit organization dedicated to strengthening democratic principles in society. The website presents a professional and well-structured platform showcasing their key services such as Student Agora, participation projects, international projects, study tours, conferences, seminars, and public debates. Their target audience includes students, civic participants, and the general public interested in democratic engagement. The organization maintains a consistent brand presence with active social media channels and a clear call to action for upcoming events. Technically, the website is built on WordPress using modern plugins including Yoast SEO, Contact Form 7 with Google reCAPTCHA, and WPBakery Page Builder. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security measures include HTTPS enforcement and cookie consent management, though some security headers could be improved. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with accessible privacy and cookie policies, and a consent mechanism in place. However, the absence of WHOIS data limits domain trust verification, slightly impacting the overall credibility score. Overall, Agora CE's website reflects a legitimate, professionally managed non-profit entity with a good digital presence and security awareness. Strategic improvements in security headers and WHOIS transparency would enhance trust and compliance further.

L

Lighthouse Relief

lighthouserelief.org

0

Lighthouse Relief is a small non-profit humanitarian organization focused on providing dignified emergency aid and psychosocial support to refugees and asylum seekers in Greece. The organization has been active for approximately 10 years, positioning itself as a trusted entity in the humanitarian aid sector. Their website is professionally designed using the Squarespace platform, featuring clear navigation, calls to action for donations and volunteering, and integration with social media channels to engage supporters. Technically, the site uses modern web technologies including HTTPS, Google Analytics, Facebook Pixel, and YouTube embeds, ensuring a moderate level of digital maturity and user engagement. Security posture is adequate with HTTPS enforced and use of reCAPTCHA on forms; however, the absence of key security headers such as HSTS and CSP reduces defense in depth. Privacy compliance is limited as no explicit privacy or cookie policies were found, which is an area for improvement. Overall, the website is trustworthy and safe, with no adult or suspicious content detected. WHOIS data is unavailable due to malformed output, likely reflecting privacy protection, which is justified for this type of organization.

T

Together for Better Days

betterdays.ngo

0

Together for Better Days is a non-profit organization focused on reimagining educational spaces for displaced young people, primarily operating in Greece with ambitions for global replication. Their mission centers on creating sustainable blueprints that guarantee access to quality education and life-changing opportunities for displaced children and young adults. The website reflects a professional and consistent brand presence, supported by active social media channels and a clear educational focus. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site includes cookie consent mechanisms with strict default denials for ad personalization and analytics storage, reflecting a strong privacy posture. Google Analytics is used responsibly with consent blocking. However, some security best practices such as security headers and explicit privacy policies are missing or not detected. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The lack of WHOIS data limits full trust verification, but the privacy protection is justified for a non-profit NGO. No forms or direct contact information were found in the provided HTML, which may impact user engagement and trust. Overall, the website is safe, professional, and well-positioned for its target audience, but could improve in transparency and security hardening to enhance trust and compliance.

M

Münchner Flüchtlingsrat

muenchner-fluechtlingsrat.de

0

The Münchner Flüchtlingsrat is a well-established non-profit organization based in Munich, Germany, dedicated to supporting refugees and migrants through advice, advocacy, and community engagement. With over 30 years of history, it serves as a platform for information exchange and political lobbying to protect the rights of displaced persons. The website reflects a professional and consistent brand image, targeting refugees, volunteers, and supporters with clear service offerings including asylum procedure advice, housing assistance, and educational events. Technically, the website is built on WordPress with the Elementor page builder, leveraging modern web technologies and libraries such as jQuery and Bootstrap. It implements a comprehensive cookie consent mechanism compliant with GDPR, uses HTTPS with good SSL configuration, and integrates Google reCAPTCHA for form security. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent management. However, some security headers are not explicitly detected and could be improved. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with a detailed privacy policy and cookie management. Business credibility is supported by transparent contact information and active content updates. Overall, the website presents a low-risk profile with a solid security posture and compliance framework. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and considering publishing an incident response policy to further strengthen trust and resilience.

V

VluchtelingenWerk Nederland

vluchtelingenwerk.nl

0

VluchtelingenWerk Nederland is a well-established non-profit organization dedicated to supporting refugees and asylum seekers in the Netherlands. The website clearly communicates its mission to assist refugees from arrival through integration, leveraging donations and volunteer efforts. The organization holds recognized certifications such as CBF and ANBI, enhancing its credibility. Technically, the site uses modern frameworks including Drupal 10 and React, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and use of Google Tag Manager, though improvements are recommended in security headers and explicit privacy and cookie policies. Overall, the website presents a professional and trustworthy digital presence aligned with its humanitarian mission.

E

Eumans.eu

eumans.eu

0

Eumans.eu is a pan-European grassroots movement dedicated to promoting democracy, human rights, and sustainability through civic and nonviolent initiatives. The organization targets European citizens and activists interested in participatory democracy and social justice. The website serves as a platform for information dissemination, advocacy, and donation collection to support their initiatives. Technically, the site is built on WordPress using Elementor and integrates GiveWP for donations, with additional plugins for forms and multilingual support. The site is well-structured, mobile-optimized, and employs modern web technologies, including Google Analytics for tracking and a cookie consent mechanism for privacy compliance. Security posture is solid with HTTPS enforced and reCAPTCHA implemented on forms, though explicit security headers could be improved. The absence of a visible privacy policy and terms of service pages slightly impacts privacy compliance scores. WHOIS data is unavailable due to EURid privacy policies for .eu domains, but the domain appears legitimate based on website content and social media presence. Overall, the website is professional, trustworthy, and aligned with its non-profit mission.

The website arcisolidarietaonlus.com is a private, restricted-access site hosted on WordPress.com and registered through Automattic Inc. The site is intended for authorized users only, with no public content available for analysis. The domain is registered since 2017, consistent with a small non-profit organization likely based in Italy. The technical infrastructure relies on WordPress CMS and standard WordPress.com hosting services. Security posture is basic with HTTPS enabled but lacking security headers and DNSSEC. No privacy, cookie, or terms of service policies are publicly available, and no contact information is provided. Overall, the site is inaccessible for public users, limiting the ability to assess business operations or compliance fully.

I

Inter Alia

interaliaproject.com

0

Inter Alia is a small, established non-profit organization based in Greece, focused on fostering civic engagement, education, youth empowerment, arts, and culture across Europe. The website reflects a professional and consistent brand presence with clear navigation and multilingual support. Their key services include educational programs, political engagement initiatives, and cultural projects, supported by an active membership and partnership network. Technically, the site is built on WordPress with a modern tech stack including popular plugins for SEO, accessibility, and cookie compliance. The hosting provider is OVH sas, and the domain has been active since 2013, aligning well with the organization's history. Security posture is good with HTTPS enforced and a comprehensive cookie consent mechanism, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website demonstrates a mature digital presence suitable for its non-profit mission.

O

Ogólnopolska Federacja Organizacji Pozarządowych

ofop.eu

0

Ogólnopolska Federacja Organizacji Pozarządowych (OFOP) is a Polish non-profit federation established in 2003 to represent and support NGOs at local, national, and European levels. The organization focuses on advocacy, monitoring European funds, capacity building, and fostering dialogue within the NGO sector. The website reflects a well-structured and professional digital presence, leveraging WordPress with modern plugins and tools to deliver content and services effectively. GDPR compliance is evident through a comprehensive privacy policy and cookie consent mechanism. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. Contact information is primarily via a contact form, with no direct emails or phone numbers publicly listed. Overall, OFOP demonstrates a credible and trustworthy online presence aligned with its mission and audience.

L

Le 4bis

le4bis-ij.com

0

Le 4bis is a French non-profit organization serving as a resource and information center for youth in Rennes and the surrounding metropolitan area. The website provides information about their missions, actions, events, and resources targeted at young people and youth professionals. The organization positions itself as a local community hub offering project support, educational tools, and cultural events. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO and Google Analytics integration, ensuring good SEO and user tracking capabilities. The site is mobile-optimized and accessible, with a professional design and clear navigation. Security-wise, the site uses HTTPS and cookie consent mechanisms, but could improve by implementing additional security headers and publishing explicit security policies. Overall, the domain registration and website content are consistent and legitimate, reflecting a trustworthy and community-focused organization.

R

Réseau Bretagne Solidaire

bretagne-solidaire.bzh

0

Réseau Bretagne Solidaire is a French non-profit regional multi-actor network established in 2018, dedicated to supporting organizations engaged in international cooperation and solidarity projects within the Brittany region. The website serves as a comprehensive platform offering project support, training, networking, and communication services to its members and partners. It holds a strong market position as the 12th RRMA in France, with a medium-sized membership base and active engagement in events, publications, and calls for projects. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential plugins for SEO, GDPR compliance, and user engagement. The site demonstrates good performance, mobile optimization, and accessibility, supported by a well-structured navigation system and rich content. Analytics and marketing tools such as Google Analytics, Google Tag Manager, and Mailjet are used responsibly with user consent mechanisms in place. From a security perspective, the site enforces HTTPS, employs security headers, and uses GDPR-compliant cookie consent banners. Forms include validation and explicit consent checkboxes, enhancing data protection. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy or incident response contact information, which could be improved. Overall, the website presents a professional, trustworthy, and user-friendly digital presence aligned with its non-profit mission. Strategic recommendations include publishing a formal security policy, adding incident response contacts, and considering a vulnerability disclosure policy to further strengthen trust and security posture.

S

SOLIDARITÉS INTERNATIONAL

solidarites.org

0

SOLIDARITÉS INTERNATIONAL is a well-established French humanitarian NGO focused on providing emergency aid, particularly access to potable water, in conflict and disaster zones worldwide. With over 40 years of experience, it holds a strong market position in the non-profit humanitarian sector. The website reflects a mature digital presence with multilingual support, donation capabilities, and active social media engagement. Technically, the site is built on WordPress with modern frameworks and integrates multiple analytics and marketing tools, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with cookie consent and GDPR-aligned policies. Overall, the site is professional, trustworthy, and aligns well with the organization's mission and audience.

U

Utopia 56

utopia56.org

0

Utopia 56 is a French non-profit humanitarian organization founded in 2015, dedicated to supporting exiled persons and migrants through direct aid such as distribution maraudes, information campaigns, and solidarity housing across seven French cities. The organization operates primarily on donations from individuals and ethical foundations, explicitly refusing state funding to maintain independence. Their website is professionally designed using WordPress and Avada theme, integrating modern tools like WooCommerce for fundraising, Google Analytics for tracking, and Mailin for communications. The site is well-structured, mobile-optimized, and rich in relevant content, including news, calls to action, and social media engagement. Security posture is solid with HTTPS and domain locking, though DNSSEC is not enabled, and additional security headers could enhance protection. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site reflects a credible, transparent, and active humanitarian organization with a strong digital presence.

L

La Cimade

lacimade.org

0

La Cimade is a well-established French non-profit organization founded in 1939, dedicated to supporting and defending migrants and refugees. The website reflects a mature digital presence with comprehensive content, including advocacy, legal support, regional activities, and educational resources. The organization targets a general audience interested in migration and human rights issues, leveraging donations and volunteer engagement as part of its business model. Technically, the site is built on WordPress with modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, ensuring good SEO and user experience. Security posture is solid with HTTPS and consent mechanisms, though it lacks some advanced HTTP security headers and published security policies. The WHOIS data is incomplete, limiting domain trust verification, but the website content and branding strongly indicate legitimacy. Overall, the site scores well on content quality, technical implementation, and security, with room for improvement in transparency and incident response readiness.

L

LDH

ldh-france.org

0

LDH (Ligue des droits de l'Homme) is a well-established French non-profit organization dedicated to the defense of human rights and civil liberties. The website reflects a mature digital presence with comprehensive content including news, legal victories, advocacy campaigns, and educational resources. The organization targets a broad audience interested in social justice and human rights issues in France and globally. Their business model is based on advocacy, membership, donations, and public engagement. Technically, the site is built on WordPress with Elementor and uses modern plugins for SEO, event management, and user engagement such as push notifications and captcha for security. Privacy compliance is well addressed with explicit cookie consent and a detailed privacy policy. Security posture is good with HTTPS, captcha, and consent mechanisms, though some security headers could be improved. The WHOIS data is missing or malformed, which slightly reduces domain trustworthiness, but the website's content and social media presence strongly support legitimacy. Overall, the site is professional, trustworthy, and well-maintained.

Maison de Quartier Villejean is a non-profit community center based in Rennes, France, operated by the Association Rencontre et Culture. The organization provides a variety of cultural, educational, and social activities targeting children, youth, adults, and volunteers within the local community. Their services include workshops, events, room rentals, and a toy library, positioning them as a key local cultural hub. The website reflects this community focus with clear navigation and relevant content tailored to their audience. Technically, the site is built on Joomla CMS with common JavaScript libraries such as jQuery and Bootstrap, hosted by OVH, and uses Google Analytics for visitor tracking. The site is moderately optimized for mobile and accessibility but could improve in these areas. Security-wise, the site uses HTTPS but lacks advanced security headers and visible incident response or security policies. Privacy compliance is basic, with a privacy policy located on a legal mentions page but no cookie consent mechanism. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy features.

Maison Internationale de Rennes (MIR) is a French non-profit organization focused on international solidarity and intercultural exchange, serving the Rennes community. The website provides information about the association's projects, events, and resources for local associations and volunteers. The site is built on WordPress using Elementor and Bootstrap 5, indicating a modern and maintainable technical infrastructure. The presence of social media links and a cookie consent mechanism shows some digital maturity. Security posture is adequate with HTTPS and cookie consent, but lacks advanced security headers and formal privacy policies. WHOIS data is missing from the AFNIC database, which is unusual for a .fr domain and slightly reduces trustworthiness. Overall, the website is professional, content-rich, and trustworthy for its target audience.

S

Stop the war now

stopthewarnow.eu

0

Stop the war now is a medium-sized Italian non-profit network comprising over 170 organizations dedicated to peacebuilding and international solidarity through nonviolent actions. The website serves as a platform to coordinate peace caravans, humanitarian projects, and cultural peace initiatives, targeting citizens and organizations interested in activism and humanitarian aid. Technically, the site is built on WordPress with a modern theme and plugins such as Yoast SEO and Google Analytics integration, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy policies, which are recommended for compliance and trust. Overall, the website is credible and professional but could improve transparency and security practices to enhance trust and compliance.

F

Ferma il riarmo!

fermailriarmo.it

0

Ferma il riarmo! is a recently established Italian non-profit campaign focused on stopping military rearmament and promoting peace. The website serves as an advocacy platform providing news, proposals, and event information related to anti-rearmament activism. The campaign collaborates with reputable organizations such as Greenpeace and Rete Pace Disarmo, enhancing its credibility within the peace advocacy sector. Technically, the website is built on WordPress with modern technologies including React and SEO optimizations via Yoast. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and DNSSEC enabled, though explicit security headers and policies are lacking. Privacy and cookie policies are absent, which is a compliance gap. No direct contact information is provided, limiting user engagement channels. Overall, the site is trustworthy and professionally presented but would benefit from enhanced privacy compliance and security transparency.

The d-portal website serves as a key tool within the International Aid Transparency Initiative (IATI) ecosystem, providing users with the ability to explore, search, and analyze international development and humanitarian aid data. The platform targets development professionals, NGOs, researchers, and policymakers, offering open access to detailed activity data from various reporting organizations. The site is well-branded and consistent with IATI standards, supporting multiple languages and providing helpful documentation links. Technically, the site employs a modern JavaScript stack including jQuery, Chartist.js for data visualization, and multiple analytics platforms such as Google Analytics, Matomo, and Plausible. The site is mobile-optimized with good navigation and user experience, though accessibility features are basic. Performance is moderate, with room for improvement in SEO and accessibility compliance. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in the HTML. However, no explicit security headers were detected, and privacy and cookie policies are not present in the analyzed content, indicating gaps in privacy compliance. WHOIS data is unavailable or malformed, likely due to privacy protection, but the domain is consistent with the official IATI network, supporting legitimacy. Overall, the site is a credible and professional resource for aid transparency, but it would benefit from enhanced privacy disclosures, security header implementation, and accessibility improvements to strengthen its security posture and compliance.