SAFETAG audits serve small scale civil society organizations and independent media houses who have digital security concerns by working with them to identify the risks they face and providing capacity-aware, pragmatic next steps to address them.

Traditional security audits are based upon the assumption that an organization has the time, money, and capacity to aim for perfect security. Low-income at-risk groups have none of these luxuries. SAFETAG combines assessment activities from the the security auditing world with best-practices for working with small scale at-risk organizations.

SAFETAG auditors lead a risk modeling process that helps staff and leadership take an institutional look at their digital security problems, expose vulnerabilities that impact their critical processes and assets, and provide clear reporting and follow up to help the organization strategically move forward and identify the support that they need.

The framework

Recent Updates

The framework

The SAFETAG Audit Framework


The Overview contains the SAFETAG Methods and top-level approaches and is available in mutiple languages:

Full Guide

You can explore the full guide online and download it in English



To train new auditors, Internews has also provided a curricula:



SAFETAG resources are available under a Creative Commons Attribution-ShareAlike (CC BY-SA 3.0) License

For photo and design details, check out Credits

Please see the full license for content attribution and a usage guide to referring to the "SAFETAG" wordmark.


Get in touch

[email protected]

We have a global network of auditors trained in the SAFETAG framework available for independent work with small NGOs.

For updates or suggestions for the framework:
submit an issue