Oahe Data

Digital Footprint Audit

Nez Perce Tribe (Niimíipuu)
Date: 2026-04-12 Entity Type: Tribe (Federally Recognized) Audit Type: Public Index Reconnaissance

Contents

Purpose

This audit maps the publicly indexed digital footprint of the Nez Perce Tribe across federal agency databases (BIA, IHS, EPA, HHS, DOI, DOJ, FEMA, USGS), court records, certificate transparency logs, the Wayback Machine, funding portals (USASpending, HHS TAGGS, GovTribe), and the Tribe's own web properties.

What can anyone with a search engine learn about your organization in 30 minutes?

For a federally recognized tribe, the digital footprint is shaped by government-to-government relationships that generate documents on systems you do not control. Every compact, grant, environmental filing, and court case creates a public record hosted on a federal domain. This audit reveals what that assembled picture looks like — and whether it matches what you intend to be public.

Methodology

The following data sources were queried on April 12, 2026:

Governance & Sensitive Documents

Queries:
"Nez Perce Tribe" filetype:pdf "confidential" OR "internal" OR "not for distribution"
"Nez Perce Tribe" filetype:pdf "resolution" OR "compact" OR "charter" OR "MOU"
"Nez Perce Tribe" site:bia.gov filetype:pdf
"Nez Perce Tribe" site:epa.gov filetype:pdf
"Nez Perce Tribe" site:federalregister.gov
#DocumentHosted OnRiskNotes
1Tribal Government Finance Manualnezperce.orgMEDIUM-HIGHFull internal finance manual detailing financial controls and procedures
2Human Resources Manualnezperce.orgMEDIUMComplete HR policy manual; employment policies, compensation, disciplinary procedures
3Revised Constitution and Bylawsnezperce.orgLOWGoverning document; standard for tribes to publish
4Gaming Compact (2008)bia.govMEDIUMFull gaming compact with operational terms and revenue-sharing provisions
5Gaming Compact (1995)bia.govMEDIUMOriginal gaming compact on BIA's public document system
6Radon Measurement QAPPepa.gov (FTP)MEDIUMQuality assurance plan on EPA FTP; includes reservation population data
7Nez Perce Tribal Code (13 titles)narf.orgLOWComplete tribal code publicly indexed on NARF/NILL

Assessment: MEDIUM

The Tribe's governance documents are appropriately self-published. The higher-risk items are the Finance Manual and HR Manual on nezperce.org, and gaming compacts on bia.gov. No documents marked "confidential" were found exposed.

Personnel & PII Exposure

#FindingHosted OnRiskNotes
1ZoomInfo Company Profilezoominfo.comMEDIUMThird-party aggregator listing 691 employees
2RocketReach Management Profilerocketreach.coMEDIUMThird-party data broker exposing management contacts

Assessment: MEDIUM

No spreadsheets with member enrollment or employee rosters were found indexed. Third-party data aggregators are scraping and republishing tribal employee contacts outside the Tribe's control.

Financial Documents

#DocumentHosted OnRiskNotes
1Pay Grade/Step Scale (2022)nezperce.orgMEDIUMComplete pay grade table with hourly rates
2Pay Grade/Step Scale (2017)nezperce.orgMEDIUMOlder pay scale still publicly accessible
3Tribal Government Finance Manualnezperce.orgMEDIUM-HIGHInternal financial controls and procedures

Assessment: MEDIUM-HIGH

The full Tribal Government Finance Manual and two versions of the pay grade/step scale are publicly accessible. While pay scales are common for tribal employers, the finance manual contains operational detail typically kept internal.

Wayback Machine Archive

MetricValue
Total unique pages archived~52,900
Total unique PDFs archived~1,160
Earliest snapshot1999-10-13
Most recent snapshot2026-04-12
Hosting platformWordPress (current); legacy static HTML + CGI-BIN (pre-2018)

Notable Archived Paths

#PathTypeNotes
1nezperce.org/~code/ (115 pages)HTMLFull tribal code as individual HTML files (legacy)
2nezperce.org/~dfrm/ (173 pages)HTML/PDFFisheries annual reports 1991-2008
3nezperce.org/Official/PDF/infosys/BackupBrochure.pdfPDFIT backup procedure document — internal operational
4nezperce.org/cgi-bin/calendar.pl?template=login.htmlHTMLExposed CGI calendar login page
5NPTFWC-Reg-* (45+ files)PDFFish & Wildlife Commission regulations 2019-2021

Assessment: MEDIUM-HIGH

A massive 27-year archive. The complete tribal code, General Council resolutions, and 45+ Fish & Wildlife regulations are preserved. Legacy paths reveal internal documents not likely intended for public indexing.

Certificate Transparency

PropertyValue
Total certificates found~85+
IssuersLet's Encrypt, Network Solutions, GoDaddy, Amazon, cPanel, Cloudflare
Earliest certificate2018-05-03
Most recent certificate2026-03-20
Wildcard certsYes (*.nezperce.org — expired, not renewed)

Subdomains Discovered

#SubdomainPurposeNotes
1support.nezperce.orgHelp desk / ticketingLet's Encrypt
2enterprise.nezperce.orgEnterprise applicationLet's Encrypt
3webland.nezperce.orgLand management systemNetwork Solutions
4npt-cdms.nezperce.orgDocument management (CDMS)Network Solutions
5flex.nezperce.orgScheduling / HR / workforceNetwork Solutions
6librenms.nezperce.orgNetwork monitoring (LibreNMS)Let's Encrypt — indicates in-house IT team

Assessment: LOW

Mature IT operation with deliberate hosting diversification. No sensitive development/staging/VPN subdomains exposed. LibreNMS confirms in-house networking team.

Funding & Contract Records

SAM.gov Registration: UEI N6M5CKJT8G71 / CAGE 1T6Y2 / 501-750 employees / View profile

Major Funding Records

#RecordAmountAgencyNotes
1EPA Climate Pollution Reduction Grant$37,346,490EPAResidential energy, renewables, EV infrastructure
2Indian Housing Block Grant$21,518,872HUDIHBG to Housing Authority, 2012-2033
3BUILD Transportation Grant$19,134,710DOTAht'Wy Interchange on US-95
4EPA CPRG Second Tranche$8,707,461EPAPart of $78M to Pacific NW tribes
5HUD Affordable Housing$4,798,703HUD16 affordable rental units
6America the Beautiful — Mine Restoration$1,900,000DOICreek restoration near abandoned mine
7HHS Tobacco Prevention$845,664HHSKeep Tobacco Sacred program
8DOJ Tribal Victim Services$543,066DOJCulturally-appropriate victim services

Subsidiary Entities Discovered

#EntityRelationshipSource
1Nez Perce Tribal Housing AuthorityHousing authoritySAM.gov
2Nez Perce Tribal EnterprisesEnterprise arm — casinos, golf, hot springsnezperce.org
3Nimiipuu HealthIHS Self-Governance health — two clinicsnimiipuuhealth.org
4Nimiipuu EnergyTribal energy company — solar, est. 2022nezperce.org
5Appaloosa ExpressTransit servicenezperce.org
6Nez Perce Soil & Water Conservation DistrictConservationSAM.gov
7Water Resources DivisionGovernment divisionnptwaterresources.org
8Dept. of Fisheries Resources ManagementGovernment divisionBPA/nezperce.org

Assessment: HIGH

The Tribe has a large, fully reconstructable federal funding footprint exceeding $100M across 10+ agencies with 8+ subsidiary entities. The BIA 638 contracts and IHS Self-Governance Compact represent significant recurring annual transfers.

Legal Code Exposure

#ResourceSourceScope
1Nez Perce Tribal Codenarf.org13 titles — complete legal framework
2Constitution & Bylawsnarf.org9 articles + bylaws
3Tribal Court OpinionsNICSAppellate decisions

Significant Litigation

#CaseTypeNotes
1NPT v. Perpetua ResourcesFederal (CWA)Settled $5M — water quality fund
2NPT v. USFS (Stibnite, 2025)Federal (NEPA)Active — challenging gold project approval
3County of Lewis v. NPT9th CircuitLandmark tribal sovereignty case

Major Settlements

#SettlementValueNotes
1Snake River Basin Water Rights~$193M$83M cash + 11,000 acres BLM land + salmon conservation
2Portland Harbor NRD$33.2MMulti-trustee natural resource damages
3Perpetua Resources CWA$5MWater quality enhancement fund

Assessment: MEDIUM-HIGH

Complete 13-title tribal code publicly indexed. Strategically coherent litigation record — aggressive treaty and environmental enforcement. The Tribe functions as a sophisticated co-regulator with delegated Clean Air Act authority.

Infrastructure & Technical Surface

DNS Configuration

RecordDomainValueSignificance
Anezperce.org104.42.73.26Microsoft Azure
Anptfisheries.org52.38.38.234Amazon AWS
Anezpercewildlife.org198.185.159.144Squarespace
Anezpercegis.org67.109.224.220Self-hosted (Verizon Business)
MXnezperce.org*.mail.protection.outlook.comMicrosoft 365
NSnezperce.orgdns1/dns2.nezperce.orgSelf-hosted authoritative DNS
TXTnezperce.orgSPF + iphmx.comProofpoint email security gateway

Infrastructure Profile

PropertyValue
Primary hostingAzure (main), AWS (fisheries), Squarespace (wildlife/tourism)
On-premisesVerizon Business IP block — DNS, GIS, mail relay
Web serverNginx + PHP 8.2.30 on Plesk
Domain type.org x4, .com x1 (no .gov)
EmailMicrosoft 365 + Proofpoint gateway
Self-hosted DNSYes — 3 of 5 domains
Subdomains20+ discovered
Security headersPartial (HSTS on main, CSP on fisheries, gaps on Squarespace)

Assessment: MEDIUM-HIGH

Sophisticated hybrid infrastructure with self-hosted DNS, LibreNMS monitoring, and enterprise email security. Server technology headers are exposed. No .gov domain despite eligibility.

Disaster & Environmental

FEMA Declarations

#DeclarationDateTypeNotes
1FEMA-4443-DR2019-06-12Storms, flooding, landslidesTribe explicitly designated
2FEMA-4534-DR2020COVID-19 pandemicStatewide
3FMAG — Texas Fire2024-07WildfireLatah/Nez Perce counties
4FMAG — Gwen Fire2024-07WildfireBurned across Reservation; $985K HMGP
5DR-48782026-04-11Straight-line windsNez Perce County designated

Environmental Monitoring

#StationAgencyType
1Clear Creek nr MF ClearwaterUSGSWater — sediment, turbidity
2Clearwater River at SpaldingUSGSWater — gage height, streamflow
3Lapwai Creek near LapwaiUSGSWater — gage height, streamflow
418 Lower Lapwai Creek sitesNPT/EPACWA Section 106 water quality

EPA Records

#RecordNotes
1Brownfields/CERCLA Response Program114-acre Blue North Mill site (asbestos)
2Underground Storage Tank Program18 regulated facilities — 2nd largest in EPA Region 10
3Delegated Burn Permit AuthorityEPA delegation to Tribe

Assessment: MEDIUM-HIGH

Substantial disaster history with multiple FEMA declarations and FMAGs. Among the most robust environmental monitoring footprints in EPA Region 10 — dozens of sites, active Brownfields program, 18 UST facilities.

Media & Public Narrative

Recent Coverage

#ArticleDateKey Points
1Tribe warns Congress of hatchery crisis2025-07FWS cut Kooskia hatchery 33%
2Fighting to protect salmon2025-08Trump withdrew from Columbia Basin Agreement
3ICE sovereignty guidance2026-01Tribal Police will not assist ICE detentions
4$37.3M EPA climate grant2024-07Largest single tribal climate grant

Leadership Identified

#NameRole
1Shannon F. WheelerChairman, NPTEC (term through 2028)
2Ashton PicardVice-Chairman, NPTEC
3Rachel P. EdwardsSecretary, NPTEC
4Anthony JohnsonInterim Manager, Planning & Economic Development

Assessment: CLEAN

Strong, well-organized public narrative centered on treaty rights, salmon restoration, and sovereignty. No scandals, no financial distress, no leadership disputes. Transparent governance with full General Council minutes published.

Risk Summary

Category Scorecard

CategoryAssessmentKey Finding
Governance & DocumentsMEDIUMFinance manual and gaming compacts publicly accessible
Personnel & PIIMEDIUMThird-party aggregators scraping employee data
Financial DocumentsMEDIUM-HIGHInternal finance manual and pay scales indexed
Wayback ArchiveMEDIUM-HIGH52,900+ pages; complete tribal code and legacy internal docs
Certificate TransparencyLOWMature IT posture; no sensitive subdomains exposed
Funding & ContractsHIGH$100M+ reconstructable; 8+ subsidiaries discovered
Legal & RegulatoryMEDIUM-HIGHComplete 13-title code; $193M settlement; active litigation
InfrastructureMEDIUM-HIGHSelf-hosted DNS; PHP version disclosed; no .gov domain
Disaster & EnvironmentalMEDIUM-HIGHMultiple FEMA declarations; 18 UST facilities
Media & NarrativeCLEANStrong positive narrative; transparent governance
Overall Footprint Assessment: EXTENSIVE

The Nez Perce Tribe has one of the most substantial digital footprints of any tribal government — a reflection of its deep engagement with federal agencies, sophisticated IT infrastructure, and transparent governance practices. This is not inherently negative; much of it reflects good governance. The question is whether all of it is intentional.

Recommendations

Immediate Actions

  1. Review the Finance Manual PDF — The Tribal Government Finance Manual details internal financial controls. Consider whether this should be behind authentication.
  2. Submit data broker opt-outs — ZoomInfo and RocketReach are republishing management contact details. Both offer removal processes.
  3. Remove server technology headers — The main site discloses PHP 8.2.30 and PleskLin. Configure nginx to suppress X-Powered-By.

Ongoing Monitoring

  1. WordPress upload directory — Sensitive PDFs uploaded through WordPress are discoverable by path enumeration. Consider access-controlling sensitive documents.
  2. Certificate renewal — Monitor that individual subdomain certs remain current after the wildcard expiration.
  3. Third-party data aggregation — Set quarterly checks on data broker services to prevent re-accumulation of employee data.

Strategic Considerations

  1. Consider .gov domain adoption — Tribal governments are eligible through CISA. A .gov domain increases authority and trust.
  2. Self-hosted DNS resilience — Running authoritative DNS on-premises is a significant decision. Ensure redundancy and failover.
  3. Audit intentionality — With 52,900+ pages archived, establish periodic reviews of what should be public vs. member-only.

What This Means

Data sovereignty is not only about what data you collect. It is about knowing where your data already lives, who else can find it, and what decisions it enables them to make.

The Nez Perce Tribe's digital footprint is a product of three decades of active federal engagement — treaty enforcement, environmental co-regulation, and economic development. Much of this exposure is the cost of doing business with the federal government. But some of it — the finance manual, the pay scales, the predictable WordPress upload paths — may not be intentional. And third-party data aggregators are assembling employee profiles from public sources without tribal consent.

Understanding this footprint is the first step toward managing it deliberately.

Prepared by Oahe Data
This audit is provided as an informational assessment of publicly available data. No unauthorized access was performed or attempted.