Scan-Fakten als JSON anzeigen
{
"schema": "https://saferpage.de/schemas/public-scan-facts.v1",
"claim_boundary": "Öffentliche Rohdaten enthalten nur Scan-Fakten, Statuswerte, Evidence-Grenzen und feste Detail-/Hintergrund-Links. Betreiber-Hintergrund, Planungen, Checklisten, Code und allgemeine Empfehlungen stehen auf separaten Seiten.",
"current_evidence_policy": {
"schema": "https://saferpage.de/schemas/public-scan-current-evidence-policy.v1",
"status": "current_scan_fields_only",
"summary": "Der Fakten-JSON exportiert nur Felder, die im gespeicherten aktuellen Scan wirklich vorhanden sind. Fehlende neue Evidence wird nicht aus alten Testergebnisformaten nachgebaut.",
"guardrails": [
"Keine synthetischen Boundary-Fallbacks fuer alte Scans",
"Keine Nachbewertung alter Testergebnisse im Fakten-JSON",
"Keine Betreiber-Empfehlung im Report-JSON"
]
},
"host": "actors.bbfc-cloud.de",
"normalized_url": "https://actors.bbfc-cloud.de/",
"score": 63,
"verdict": {
"color": "orange",
"label": "auffällig",
"score": 63
},
"scan_id": "ac00e4f8-55b4-4caf-9f51-a52b5a189ad3",
"created_at": "2026-06-19 19:52:03.522659+02",
"evidence": {
"dns": {
"ok": true,
"addresses": [
"15.197.253.240",
"3.33.249.164",
"52.223.53.203",
"99.83.185.157"
],
"duration_ms": 34
},
"tls": {
"ok": true,
"cipher": "TLS_AES_128_GCM_SHA256",
"issuer": [
[
[
"countryName",
"US"
]
],
[
[
"organizationName",
"Let's Encrypt"
]
],
[
[
"commonName",
"R13"
]
]
],
"subject": [
[
[
"commonName",
"actors.bbfc-cloud.de"
]
]
],
"version": "TLSv1.3",
"not_after": "Aug 22 23:41:48 2026 GMT",
"hostname_matches": true,
"days_until_expiry": 64,
"subject_alt_names": [
"actors.bbfc-cloud.de"
],
"issuer_common_name": "R13"
},
"http": {
"ok": true,
"status": 200,
"headers": {
"nel": "{\"report_to\":\"heroku-nel\",\"response_headers\":[\"Via\"],\"max_age\":3600,\"success_fraction\":0.01,\"failure_fraction\":0.1}",
"via": "1.1 heroku-router",
"date": "Fri, 19 Jun 2026 17:51:41 GMT",
"etag": "W/\"2591df90becca556ba7924d2697033dc\"",
"link": "<https://assets.bbfc-cloud.de/assets/public-8699885d.css>; rel=preload; as=style; crossorigin=anonymous; nopush,<https://assets.bbfc-cloud.de/assets/application-v2-ad0f3ddb.css>; rel=preload; as=style; crossorigin=anonymous; nopush,<https://assets.bbfc-cloud.de/assets/browser-update-be2b45cc.js>; rel=preload; as=script; crossorigin=anonymous; nonce=zkUJBdPm8DyjaRSYx5WIBQ==; nopush,<https://assets.bbfc-cloud.de/assets/fonts-b8946ffb.css>; rel=preload; as=style; crossorigin=anonymous; nopush",
"server": "Heroku",
"accept-ch": "Sec-CH-UA-Platform-Version, Sec-CH-UA-Model",
"report-to": "{\"group\":\"heroku-nel\",\"endpoints\":[{\"url\":\"https://nel.heroku.com/reports?s=iZh8Dl6WYMLbGqVE2%2FT2EAuqTU1lXywgn1ZYskki1%2BY%3D\\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\\u0026ts=1781891501\"}],\"max_age\":3600}",
"x-runtime": "0.067428",
"connection": "close",
"set-cookie": "_prestage_session=PKDYFnsTIDibAEFvp3XHi%2Bis4GjYd49Ue8Ms%2BYlVwOldjWMe1%2FJ2bvv7Qxel6Tf3XyHQ4uiyxt8PSyrbFnXGIT9eKI1GCHbu3yexibj565d7m3m1Yry7ws7kYfH1zojeiQxiyIeBSv5djL1ZjWh5bIhKTtQDb%2F6DM1Fy%2FdTG9C53bLBGC5CjneNsgMlfmwB7XE7rig1jZsinqCB82V5HVjzp05ysF5qeU4vqRMXgGVkOSsv%2BHndHYt0nYxdHrw3muzEWUh77gAYFxFlHmElwSwwwr6K7V%2B%2BSSQ%3D%3D--k%2BNupOLb1x%2F9YC8S--mdAtcUlon2i53mwXwMnxZA%3D%3D; path=/; secure; httponly; samesite=lax",
"content-type": "text/html; charset=utf-8",
"x-request-id": "a74aa862-bc7c-09b1-df84-7cf145dc0271",
"cache-control": "max-age=0, private, must-revalidate",
"content-length": "133613",
"referrer-policy": "strict-origin-when-cross-origin",
"x-frame-options": "SAMEORIGIN",
"x-xss-protection": "0",
"x-download-options": "noopen",
"reporting-endpoints": "heroku-nel=\"https://nel.heroku.com/reports?s=iZh8Dl6WYMLbGqVE2%2FT2EAuqTU1lXywgn1ZYskki1%2BY%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1781891501\"",
"x-content-type-options": "nosniff",
"content-security-policy": "base-uri 'none'; default-src 'none'; child-src blob:; font-src data: https://assets.bbfc-cloud.de https://fonts.gstatic.com; img-src 'self' data: blob: android-webview-video-poster: android-webview: https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://bbfc-cloud-public.s3.eu-west-1.amazonaws.com https://assets.bbfc-cloud.de https://d98aqn5zv9lac.cloudfront.net https://static.bbfc-cloud.de https://maps.gstatic.com https://maps.googleapis.com https://img.youtube.com https://i.vimeocdn.com https://d33v4339jhl8k0.cloudfront.net; media-src mediastream: https://static.bbfc-cloud.de https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://bbfc-cloud-public.s3.eu-west-1.amazonaws.com https://static.filmmakers.eu https://static.castupload.com; object-src 'none'; form-action 'self' https://*.facebook.com https://accounts.google.com https://login.microsoftonline.com; script-src 'self' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' 'report-sample' https://assets.bbfc-cloud.de https://maps.googleapis.com https://beacon-v2.helpscout.net https://sdk.twilio.com 'nonce-zkUJBdPm8DyjaRSYx5WIBQ=='; style-src 'unsafe-inline' https://assets.bbfc-cloud.de https://fonts.googleapis.com; connect-src 'self' https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://o4507482697236480.ingest.de.sentry.io https://maps.googleapis.com https://vimeo.com wss://global.vss.twilio.com wss://sdkgw.us1.twilio.com https://chatapi.helpscout.net https://beaconapi.helpscout.net https://d3hb14vkzrxvla.cloudfront.net wss://*.pusher.com; block-all-mixed-content; manifest-src 'self' https://assets.bbfc-cloud.de; frame-ancestors 'none'; frame-src https://www.filmmakers.eu; worker-src 'self'; report-uri https://o4507482697236480.ingest.de.sentry.io/api/4507906798780496/security/?sentry_key=698b0552c0fe20fe9d31ce1186e5d5e8",
"strict-transport-security": "max-age=63072000; includeSubDomains",
"x-permitted-cross-domain-policies": "none"
},
"body_size": 133613,
"final_url": "https://www.bbfc-cloud.de/",
"duration_ms": 655
},
"scanner": {
"bot_url": "https://saferpage.de/bot",
"context": "crawler",
"user_agent": "SaferPageCrawler/0.3 (+https://saferpage.de/bot; schedules passive DACH website checks; report examples: https://saferpage.de/tests; kostenloser Report: <a href=\"https://saferpage.de/actors.bbfc-cloud.de\">https://saferpage.de/actors.bbfc-cloud.de</a>)",
"default_user_agent": "SaferPageBot/0.2 (+https://saferpage.de/bot; passive website safety check; no attack tests)"
},
"domain_records": {
"mx": true,
"caa": true,
"spf": false,
"dmarc": false,
"dnssec": true,
"records": {
"mx": [
"cryptic-panda-0dzjq2khzh8ixj0liso7fzbi.herokudns.com."
],
"ns": [
"cryptic-panda-0dzjq2khzh8ixj0liso7fzbi.herokudns.com."
],
"caa": [
"cryptic-panda-0dzjq2khzh8ixj0liso7fzbi.herokudns.com."
],
"txt": [
"cryptic-panda-0dzjq2khzh8ixj0liso7fzbi.herokudns.com."
],
"cname": [
"cryptic-panda-0dzjq2khzh8ixj0liso7fzbi.herokudns.com."
],
"dmarc": [],
"dnskey_present": true
},
"spf_includes": [],
"verifications": []
},
"googlebot_http": {
"ok": true,
"status": 200,
"headers": {
"nel": "{\"report_to\":\"heroku-nel\",\"response_headers\":[\"Via\"],\"max_age\":3600,\"success_fraction\":0.01,\"failure_fraction\":0.1}",
"via": "1.1 heroku-router",
"date": "Fri, 19 Jun 2026 17:51:41 GMT",
"etag": "W/\"165a0d9511c225da1c5225fcfa205ffd\"",
"link": "<https://assets.bbfc-cloud.de/assets/public-8699885d.css>; rel=preload; as=style; crossorigin=anonymous; nopush,<https://assets.bbfc-cloud.de/assets/application-v2-ad0f3ddb.css>; rel=preload; as=style; crossorigin=anonymous; nopush,<https://assets.bbfc-cloud.de/assets/browser-update-be2b45cc.js>; rel=preload; as=script; crossorigin=anonymous; nonce=xLSmyyabRWUwhh3URfhyBA==; nopush,<https://assets.bbfc-cloud.de/assets/fonts-b8946ffb.css>; rel=preload; as=style; crossorigin=anonymous; nopush",
"server": "Heroku",
"accept-ch": "Sec-CH-UA-Platform-Version, Sec-CH-UA-Model",
"report-to": "{\"group\":\"heroku-nel\",\"endpoints\":[{\"url\":\"https://nel.heroku.com/reports?s=iZh8Dl6WYMLbGqVE2%2FT2EAuqTU1lXywgn1ZYskki1%2BY%3D\\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\\u0026ts=1781891501\"}],\"max_age\":3600}",
"x-runtime": "0.033095",
"connection": "close",
"set-cookie": "_prestage_session=tCJRob3eDO39GqvHZl8RW4by7SgoOY8yBXnehZvA16uryrkQamEWUhdpC%2B59ufJahrlhuvi29fi1HymrVxx888V%2FVLWJf8rKhGqHzBwKgX2cYhBR5Lr0vHB0qIcIR6mFDK63ZU8s2990Q7r5leY2wRjKkTTpzUbtspLWNQIbHTJjZ4LYab65Vr7gF3nafFm8B5xeBrhFZ8l7xmsYt1Jw5c9qReqZII2bOCYg4yKhBgKAzM9M%2B7LgbjAz9Cxp%2B1H0UXvJbejK5KazsdfbEGqVNWQDqyFp1AplZQ%3D%3D--u%2BLkaWILjA52LMae--pa0zpIV7eW1h%2Byi0N9ZKuQ%3D%3D; path=/; secure; httponly; samesite=lax",
"content-type": "text/html; charset=utf-8",
"x-request-id": "59aa9c13-759b-0990-6729-2448957475ea",
"cache-control": "max-age=0, private, must-revalidate",
"content-length": "133613",
"referrer-policy": "strict-origin-when-cross-origin",
"x-frame-options": "SAMEORIGIN",
"x-xss-protection": "0",
"x-download-options": "noopen",
"reporting-endpoints": "heroku-nel=\"https://nel.heroku.com/reports?s=iZh8Dl6WYMLbGqVE2%2FT2EAuqTU1lXywgn1ZYskki1%2BY%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1781891501\"",
"x-content-type-options": "nosniff",
"content-security-policy": "base-uri 'none'; default-src 'none'; child-src blob:; font-src data: https://assets.bbfc-cloud.de https://fonts.gstatic.com; img-src 'self' data: blob: android-webview-video-poster: android-webview: https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://bbfc-cloud-public.s3.eu-west-1.amazonaws.com https://assets.bbfc-cloud.de https://d98aqn5zv9lac.cloudfront.net https://static.bbfc-cloud.de https://maps.gstatic.com https://maps.googleapis.com https://img.youtube.com https://i.vimeocdn.com https://d33v4339jhl8k0.cloudfront.net; media-src mediastream: https://static.bbfc-cloud.de https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://bbfc-cloud-public.s3.eu-west-1.amazonaws.com https://static.filmmakers.eu https://static.castupload.com; object-src 'none'; form-action 'self' https://*.facebook.com https://accounts.google.com https://login.microsoftonline.com; script-src 'self' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' 'report-sample' https://assets.bbfc-cloud.de https://maps.googleapis.com https://beacon-v2.helpscout.net https://sdk.twilio.com 'nonce-xLSmyyabRWUwhh3URfhyBA=='; style-src 'unsafe-inline' https://assets.bbfc-cloud.de https://fonts.googleapis.com; connect-src 'self' https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://o4507482697236480.ingest.de.sentry.io https://maps.googleapis.com https://vimeo.com wss://global.vss.twilio.com wss://sdkgw.us1.twilio.com https://chatapi.helpscout.net https://beaconapi.helpscout.net https://d3hb14vkzrxvla.cloudfront.net wss://*.pusher.com; block-all-mixed-content; manifest-src 'self' https://assets.bbfc-cloud.de; frame-ancestors 'none'; frame-src https://www.filmmakers.eu; worker-src 'self'; report-uri https://o4507482697236480.ingest.de.sentry.io/api/4507906798780496/security/?sentry_key=698b0552c0fe20fe9d31ce1186e5d5e8",
"strict-transport-security": "max-age=63072000; includeSubDomains",
"x-permitted-cross-domain-policies": "none"
},
"body_size": 133613,
"final_url": "https://www.bbfc-cloud.de/",
"duration_ms": 616
},
"ai_search_policy_evidence": {
"files": [
{
"id": "robots_txt",
"url": "https://www.bbfc-cloud.de/robots.txt",
"label": "robots.txt",
"reason": "",
"status": "found",
"body_size": 99,
"truncated": false,
"body_sha256": "2f15987e4606501202b9d337085439339e53a374e3d194847192c12f85ba78f8",
"duration_ms": 109,
"http_status": 200,
"ai_bot_policy": {
"bot_directives": [],
"explicit_ai_bots": [],
"explicit_ai_bot_count": 0,
"wildcard_directive_count": 0,
"wildcard_directives_sample": []
},
"relevant_lines": []
},
{
"id": "llms_txt",
"url": "https://www.bbfc-cloud.de/llms.txt",
"label": "llms.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 168,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ai_txt",
"url": "https://www.bbfc-cloud.de/.well-known/ai.txt",
"label": "AI Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 273,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ai_policy_txt",
"url": "https://www.bbfc-cloud.de/.well-known/ai-policy.txt",
"label": "AI Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 180,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ward_txt",
"url": "https://www.bbfc-cloud.de/.well-known/ward.txt",
"label": "WARD Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 217,
"http_status": 404,
"relevant_lines": []
}
],
"origin": "https://www.bbfc-cloud.de",
"schema": "https://saferpage.de/schemas/ai-search-policy-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 5,
"found_file_count": 1,
"policy_file_count": 0,
"explicit_ai_bot_count": 0
},
"summary": "1 von 5 Policy-Datei(en) gefunden; 0 explizite KI-Bot-Regel(n) in robots.txt.",
"available": true,
"guardrails": [
"Nur feste Same-Origin-Policy-Dateien",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status und kurze relevante Zeilen"
],
"known_ai_bots": [
"GPTBot",
"ChatGPT-User",
"Google-Extended",
"ClaudeBot",
"PerplexityBot",
"CCBot"
],
"explicit_ai_bots": [],
"policy_file_count": 0,
"llms_ward_policy_status": "not_publicly_verified",
"robots_ai_policy_status": "robots_found_no_ai_bot_policy"
},
"adtech_transparency_evidence": {
"files": [
{
"id": "ads_txt",
"url": "https://www.bbfc-cloud.de/ads.txt",
"label": "ads.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 120,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
},
{
"id": "app_ads_txt",
"url": "https://www.bbfc-cloud.de/app-ads.txt",
"label": "app-ads.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 175,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
},
{
"id": "sellers_json",
"url": "https://www.bbfc-cloud.de/sellers.json",
"label": "sellers.json",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 256,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
}
],
"origin": "https://www.bbfc-cloud.de",
"schema": "https://saferpage.de/schemas/adtech-transparency-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 3,
"direct_count": 0,
"reseller_count": 0,
"found_file_count": 0,
"ads_txt_entry_count": 0,
"exchange_domain_count": 0,
"app_ads_txt_entry_count": 0,
"sellers_json_seller_count": 0
},
"summary": "0 von 3 AdTech-Transparenzdatei(en) gefunden; 0 DIRECT- und 0 RESELLER-Zeile(n).",
"available": true,
"guardrails": [
"Nur feste Same-Origin-AdTech-Dateien",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status, Zähler und kurze relevante Zeilen"
],
"direct_count": 0,
"ads_txt_found": false,
"reseller_count": 0,
"app_ads_txt_found": false,
"sellers_json_found": false,
"ads_txt_entry_count": 0,
"exchange_domain_count": 0,
"sellers_json_parse_ok": false,
"app_ads_txt_entry_count": 0,
"sellers_json_seller_count": 0
},
"security_trust_policy_evidence": {
"files": [
{
"id": "security_txt",
"url": "https://www.bbfc-cloud.de/.well-known/security.txt",
"label": "security.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 134,
"http_status": 404,
"relevant_lines": [],
"security_txt_policy": []
},
{
"id": "security_txt_legacy",
"url": "https://www.bbfc-cloud.de/security.txt",
"label": "security.txt legacy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 218,
"http_status": 404,
"relevant_lines": [],
"security_txt_policy": []
}
],
"origin": "https://www.bbfc-cloud.de",
"schema": "https://saferpage.de/schemas/security-trust-policy-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 2,
"field_count": 0,
"contact_count": 0,
"found_file_count": 0,
"preferred_well_known_found": 0
},
"summary": "0 von 2 security.txt-Ziel(en) gefunden; 0 Kontaktfeld(er), 0 strukturierte Feld(er).",
"available": true,
"guardrails": [
"Nur feste Same-Origin-security.txt-Ziele",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status und kurze relevante Zeilen"
],
"field_count": 0,
"contact_count": 0,
"fields_present": [],
"policy_present": false,
"expires_present": false,
"encryption_present": false,
"security_txt_found": false,
"preferred_well_known_found": false
}
},
"findings": [
{
"id": "pii_sensitive_get_form",
"forms": [
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
}
],
"title": "Formular mit personenbezogenen Feldern nutzt GET",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"user_importance": 124,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "third_party_full_referrer_leak",
"count": 7,
"title": "Drittanbieter können vollen Referrer-Kontext erhalten",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"assets.bbfc-cloud.de"
],
"user_importance": 120,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "pii_external_form_action",
"forms": [
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
}
],
"title": "Formular mit personenbezogenen Feldern sendet an externe Domain",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"user_importance": 120,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "external_link_spam",
"title": "Sehr viele externe Links erkannt",
"public": true,
"audience": "nutzer",
"category": "seo",
"severity": "warning",
"evidence_items": [
"64 externe Links auf der Startseite"
],
"user_importance": 116,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "browser_keystroke_listener_signals",
"count": 33,
"title": "Viele Tastatur-/Eingabe-Listener im Browser erkannt",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"Tastatur-Eingabe-Listener (Session-Replay-nah) im Browser-Lauf erkannt"
],
"user_importance": 110,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "csp_unsafe_inline",
"title": "CSP erlaubt unsafe-inline für Skripte",
"public": true,
"audience": "nutzer",
"category": "security_headers",
"severity": "warning",
"user_importance": 96,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "sampled_form_privacy_context_missing",
"title": "Formular-Unterseite ohne klaren Datenschutzkontext",
"public": true,
"audience": "nutzer",
"category": "crawl",
"severity": "warning",
"evidence_items": [
"https://actors.bbfc-cloud.de/actor_profile_search/new"
],
"user_importance": 96,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "csp_unsafe_eval",
"title": "CSP erlaubt eval-nahe Skriptausführung",
"public": true,
"audience": "nutzer",
"category": "security_headers",
"severity": "warning",
"user_importance": 94,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "important_pages_not_discovered",
"title": "Wichtige Betreiberseiten nicht vollständig in der Linkstruktur gefunden",
"public": true,
"audience": "nutzer",
"category": "crawl",
"severity": "warning",
"evidence_items": [
"Wichtige Seiten in der Linkstruktur gefunden: keine"
],
"user_importance": 88,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "button_name_missing",
"count": 6,
"title": "Buttons ohne erkennbaren Namen",
"public": true,
"audience": "nutzer",
"category": "accessibility",
"severity": "warning",
"evidence_items": [
"type=button",
"type=button",
"type=button",
"type=button",
"type=button",
"type=button"
],
"user_importance": 86,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "external_script_without_sri",
"count": 3,
"title": "Externe Skripte ohne Subresource Integrity",
"public": true,
"audience": "nutzer",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"https://assets.bbfc-cloud.de/assets/browser-update-be2b45cc.js",
"https://assets.bbfc-cloud.de/assets/sentry-e4ecaa5b.js",
"https://assets.bbfc-cloud.de/assets/public-e0afae08.js"
],
"user_importance": 84,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "compression_missing",
"title": "Komprimierung nicht erkannt",
"public": true,
"audience": "betreiber",
"category": "performance",
"severity": "info",
"evidence_items": [
"HTTP-Antwort ohne gzip/br-Komprimierung (kein Content-Encoding-Header)"
],
"user_importance": 76,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_cross_origin_embedder_policy",
"title": "Cross-Origin-Embedder-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Cross-Origin-Embedder-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 68,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_cross_origin_opener_policy",
"title": "Cross-Origin-Opener-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Cross-Origin-Opener-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 66,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_cross_origin_resource_policy",
"title": "Cross-Origin-Resource-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Cross-Origin-Resource-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 64,
"importance_label": "Technischer Hinweis"
},
{
"id": "crawl_coverage_limited",
"title": "Wenig interne Seiten auf der Startseite gefunden",
"public": true,
"audience": "betreiber",
"category": "crawl",
"severity": "info",
"evidence_items": [
"Nur 1 interne Links auf der Startseite gefunden"
],
"user_importance": 62,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_permissions_policy",
"title": "Permissions-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Permissions-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 40,
"importance_label": "Technischer Hinweis"
},
{
"id": "unknown_vendor_jurisdiction",
"title": "Anbieter-Jurisdiktion nicht klar ableitbar",
"public": true,
"audience": "betreiber",
"category": "privacy",
"severity": "info",
"evidence_items": [
"Drittanbieter mit unklarer Anbieter-Jurisdiktion / möglichem Drittlandtransfer"
],
"user_importance": 30,
"importance_label": "Technischer Hinweis"
}
],
"audit_modules": [
{
"id": "site_coverage",
"color": "red",
"score": 42,
"title": "Seitenabdeckung & Crawl",
"source": "Startseiten-Links, Compliance-Links und begrenzter interner Zusatzabruf",
"status": "kritisch",
"evidence": "1 interne Linkziele erkannt, 1 priorisierte Unterseite(n) abgerufen."
},
{
"id": "forms_payments",
"color": "red",
"score": 46,
"title": "Formulare, Login & Zahlung",
"source": "HTML-Formulare, Eingabefelder, Zahlungsanbieter und Kontextlinks",
"status": "kritisch",
"evidence": "Aus diesem Rohfeld wird im Report keine zusätzliche Scan-Feststellung abgeleitet; Betreiberkontext und Umsetzungshinweise stehen auf separaten Seiten."
},
{
"id": "pii_exposure",
"color": "red",
"score": 46,
"title": "PII, URL-Parameter & Datenleck-Schutz",
"source": "URL-Parameter, interne Links, HTML-Formulare, Browser-Drittanbieter und Dateneingabe-Kontext",
"status": "kritisch",
"evidence": "2 PII-/Datenleck-Hinweis(e) aus URL-, Formular- und Browserkontext."
},
{
"id": "security_tls",
"color": "orange",
"score": 64,
"title": "Sicherheit, TLS & Header",
"source": "DNS, TLS, HTTP-Status, Zertifikat und Security-Header",
"status": "auffällig",
"evidence": "1 Infrastruktur-Hinweis(e), Security-Header: 5/9 vorhanden, 4 fehlen, externe Skript-Hosts: 1."
},
{
"id": "browser_evidence",
"color": "orange",
"score": 65,
"title": "Browser-Nachweis",
"source": "Headless Chromium mit Screenshot- und Request-Telemetrie",
"status": "auffällig",
"evidence": "24 Request(s), 3 Drittanbieter-Domain(s), davon 0 datenschutzrelevant, 1 Browser-Cookie(s), Transfer-Prüfbedarf: 0, Referrer-/URL-Leaks: 1, Fingerprinting-/Replay-Hinweise: 1."
},
{
"id": "referrer_url_leaks",
"color": "orange",
"score": 65,
"title": "Referrer & URL-Leaks",
"source": "Chromium-Request-Telemetrie ohne gespeicherte Parameterwerte",
"status": "auffällig",
"evidence": "1 Drittanbieter-Domain(s) mit Referrer-/URL-Leak-Prüfbedarf, 0 sensible Query-Kontexte."
},
{
"id": "accessibility_usability",
"color": "yellow",
"score": 76,
"title": "Barrierefreiheit & Usability",
"source": "Passives HTML-Sample: Bilder, Formulare, Buttons, Sprache, Headings und Viewport",
"status": "prüfen",
"evidence": "0 Bild(er) ohne alt, 0 Formularfeld(er) ohne Beschriftung, 6 Button(s) ohne Namen."
},
{
"id": "seo_integrity",
"color": "yellow",
"score": 82,
"title": "SEO-Integrität & Cloaking",
"source": "HTML-Inhalt, strukturierte Daten, Links und Googlebot-Vergleich",
"status": "prüfen",
"evidence": "1 SEO-Spam-Hinweis(e), 0 Cloaking-Hinweis(e)."
},
{
"id": "script_supply_chain",
"color": "yellow",
"score": 88,
"title": "Externe Skripte & SRI",
"source": "HTML-Script-Tags, Anbieterklassifikation und SRI-Attribute",
"status": "prüfen",
"evidence": "3 externe Skript(e) von 1 Host(s), 3 ohne SRI, 0 Tracking-/Tag-nahe Skript(e)."
},
{
"id": "privacy_consent",
"color": "green",
"score": 92,
"title": "Datenschutz, Cookies & Consent",
"source": "Browser, HTTP-Header, HTML und Consent-/Cookie-Heuristik",
"status": "unauffällig",
"evidence": "0 Tracking-Script(s), 1 Cookie(s) vor Einwilligung, 0 Tracking-Cookie(s), Ablehnen-Option: ja, Consent-Audit: 100."
},
{
"id": "performance_mobile",
"color": "green",
"score": 94,
"title": "Performance & mobile Nutzbarkeit",
"source": "HTTP-Antwort, HTML-Größe, Komprimierung und mobile Basis",
"status": "unauffällig",
"evidence": "Performance-Score 94, Antwortzeit 655 ms."
},
{
"id": "consent_journey",
"color": "green",
"score": 100,
"title": "Consent-Journey-Matrix",
"source": "Chromium-Zustände: Erstaufruf, Reject, Accept und GPC",
"status": "unauffällig",
"evidence": "Consent-Journey: 0 neue Datenschutz-Domain(s) nach Ablehnen, 0 nach Akzeptieren, 0 im GPC-Aufruf."
},
{
"id": "cookie_inventory",
"color": "green",
"score": 100,
"title": "Cookie-Inventar",
"source": "HTTP-Set-Cookie und Chromium-Cookies beim ersten Seitenaufruf",
"status": "unauffällig",
"evidence": "2 Cookie(s), 0 Tracking-/Werbe-Cookie(s), 0 Drittanbieter-Cookie(s), 0 langlebig, 0 sehr lang."
},
{
"id": "embedded_content",
"color": "green",
"score": 100,
"title": "Externe Inhalte & Widgets",
"source": "HTML-Embeds und Chromium-Drittanbieter-Requests",
"status": "unauffällig",
"evidence": "0 externe Embed-/Widget-Dienst(e), 0 davon im ersten Browseraufruf geladen."
},
{
"id": "google_third_parties",
"color": "green",
"score": 100,
"title": "Google-Dienste & Drittanbieter",
"source": "Chromium-Requests, Anbieterklassifikation und Google Consent Mode Heuristik",
"status": "unauffällig",
"evidence": "Keine Google-Domain, keine Google-Tracking-ID und keine datenschutzrelevanten Drittanbieter im passiven Check erkannt."
},
{
"id": "operator_transparency",
"color": "green",
"score": 100,
"title": "Impressum, Kontakt & Datenschutzerklärung",
"source": "Deutschsprachige Betreiber- und Datenschutzhinweis-Erkennung",
"status": "unauffällig",
"evidence": "Impressum: ja, Datenschutz: ja, Kontakt: ja."
},
{
"id": "tracking_pixels_beacons",
"color": "green",
"score": 100,
"title": "Tracking-Pixel & Beacons",
"source": "HTML-Pixel, Link-Ping-Attribute, Chromium-Requests und Browser-API-Instrumentierung",
"status": "unauffällig",
"evidence": "0 Pixel-/Bildtracking-Hinweis(e), 0 Beacon-/Telemetry-Hinweis(e), 0 Link-Ping(s)."
}
],
"ai_search_policy_evidence": {
"files": [
{
"id": "robots_txt",
"url": "https://www.bbfc-cloud.de/robots.txt",
"label": "robots.txt",
"reason": "",
"status": "found",
"body_size": 99,
"truncated": false,
"body_sha256": "2f15987e4606501202b9d337085439339e53a374e3d194847192c12f85ba78f8",
"duration_ms": 109,
"http_status": 200,
"ai_bot_policy": {
"bot_directives": [],
"explicit_ai_bots": [],
"explicit_ai_bot_count": 0,
"wildcard_directive_count": 0,
"wildcard_directives_sample": []
},
"relevant_lines": []
},
{
"id": "llms_txt",
"url": "https://www.bbfc-cloud.de/llms.txt",
"label": "llms.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 168,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ai_txt",
"url": "https://www.bbfc-cloud.de/.well-known/ai.txt",
"label": "AI Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 273,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ai_policy_txt",
"url": "https://www.bbfc-cloud.de/.well-known/ai-policy.txt",
"label": "AI Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 180,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ward_txt",
"url": "https://www.bbfc-cloud.de/.well-known/ward.txt",
"label": "WARD Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 217,
"http_status": 404,
"relevant_lines": []
}
],
"origin": "https://www.bbfc-cloud.de",
"schema": "https://saferpage.de/schemas/ai-search-policy-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 5,
"found_file_count": 1,
"policy_file_count": 0,
"explicit_ai_bot_count": 0
},
"summary": "1 von 5 Policy-Datei(en) gefunden; 0 explizite KI-Bot-Regel(n) in robots.txt.",
"available": true,
"guardrails": [
"Nur feste Same-Origin-Policy-Dateien",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status und kurze relevante Zeilen"
],
"known_ai_bots": [
"GPTBot",
"ChatGPT-User",
"Google-Extended",
"ClaudeBot",
"PerplexityBot",
"CCBot"
],
"explicit_ai_bots": [],
"policy_file_count": 0,
"llms_ward_policy_status": "not_publicly_verified",
"robots_ai_policy_status": "robots_found_no_ai_bot_policy"
},
"adtech_transparency_evidence": {
"files": [
{
"id": "ads_txt",
"url": "https://www.bbfc-cloud.de/ads.txt",
"label": "ads.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 120,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
},
{
"id": "app_ads_txt",
"url": "https://www.bbfc-cloud.de/app-ads.txt",
"label": "app-ads.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 175,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
},
{
"id": "sellers_json",
"url": "https://www.bbfc-cloud.de/sellers.json",
"label": "sellers.json",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 256,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
}
],
"origin": "https://www.bbfc-cloud.de",
"schema": "https://saferpage.de/schemas/adtech-transparency-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 3,
"direct_count": 0,
"reseller_count": 0,
"found_file_count": 0,
"ads_txt_entry_count": 0,
"exchange_domain_count": 0,
"app_ads_txt_entry_count": 0,
"sellers_json_seller_count": 0
},
"summary": "0 von 3 AdTech-Transparenzdatei(en) gefunden; 0 DIRECT- und 0 RESELLER-Zeile(n).",
"available": true,
"guardrails": [
"Nur feste Same-Origin-AdTech-Dateien",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status, Zähler und kurze relevante Zeilen"
],
"direct_count": 0,
"ads_txt_found": false,
"reseller_count": 0,
"app_ads_txt_found": false,
"sellers_json_found": false,
"ads_txt_entry_count": 0,
"exchange_domain_count": 0,
"sellers_json_parse_ok": false,
"app_ads_txt_entry_count": 0,
"sellers_json_seller_count": 0
},
"security_trust_policy_evidence": {
"files": [
{
"id": "security_txt",
"url": "https://www.bbfc-cloud.de/.well-known/security.txt",
"label": "security.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 134,
"http_status": 404,
"relevant_lines": [],
"security_txt_policy": []
},
{
"id": "security_txt_legacy",
"url": "https://www.bbfc-cloud.de/security.txt",
"label": "security.txt legacy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 218,
"http_status": 404,
"relevant_lines": [],
"security_txt_policy": []
}
],
"origin": "https://www.bbfc-cloud.de",
"schema": "https://saferpage.de/schemas/security-trust-policy-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 2,
"field_count": 0,
"contact_count": 0,
"found_file_count": 0,
"preferred_well_known_found": 0
},
"summary": "0 von 2 security.txt-Ziel(en) gefunden; 0 Kontaktfeld(er), 0 strukturierte Feld(er).",
"available": true,
"guardrails": [
"Nur feste Same-Origin-security.txt-Ziele",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status und kurze relevante Zeilen"
],
"field_count": 0,
"contact_count": 0,
"fields_present": [],
"policy_present": false,
"expires_present": false,
"encryption_present": false,
"security_txt_found": false,
"preferred_well_known_found": false
},
"site_coverage_analysis": {
"color": "red",
"pages": [
{
"url": "https://actors.bbfc-cloud.de/actor_profile_search/new",
"path": "/actor_profile_search/new",
"text": "Cast",
"source": "homepage_link",
"category": "unterseite",
"priority": 20
}
],
"score": 42,
"status": "kritisch",
"summary": "1 interne Linkziele erkannt (0 aus Sitemap), 1 priorisierte Unterseite(n) zusätzlich abgerufen.",
"findings": [
{
"id": "crawl_coverage_limited",
"title": "Wenig interne Seiten auf der Startseite gefunden",
"public": true,
"category": "crawl",
"severity": "info"
},
{
"id": "important_pages_not_discovered",
"title": "Wichtige Betreiberseiten nicht vollständig in der Linkstruktur gefunden",
"public": true,
"category": "crawl",
"severity": "warning"
},
{
"id": "sampled_form_privacy_context_missing",
"title": "Formular-Unterseite ohne klaren Datenschutzkontext",
"public": true,
"category": "crawl",
"severity": "warning"
}
],
"robots_ok": true,
"categories": {
"unterseite": 1
},
"sample_limit": 4,
"sampled_count": 1,
"sampled_pages": [
{
"ok": true,
"url": "https://actors.bbfc-cloud.de/actor_profile_search/new",
"path": "/actor_profile_search/new",
"audit": {
"form_count": 6,
"finding_ids": [
"imprint_missing"
],
"cookie_count": 1,
"imprint_found": false,
"consent_hint_found": false,
"reject_option_found": false,
"privacy_policy_found": false,
"tracking_script_count": 0,
"pre_consent_cookie_count": 1,
"pre_consent_tracking_cookie_count": 0
},
"forms": 6,
"title": "Berlin Brandenburg Film Commission",
"status": 200,
"category": "unterseite",
"duration_ms": 417,
"privacy_hint": false,
"privacy_policy_audit": []
}
],
"robots_checked": true,
"sitemap_sources": [],
"sitemap_available": false,
"sitemap_url_count": 0,
"homepage_link_count": 138,
"internal_link_count": 1,
"privacy_policy_audit": [],
"sitemap_source_count": 0,
"provider_disclosure_audit": {
"found": [],
"checks": [],
"reason": "no_detected_services",
"missing": [],
"available": false
},
"important_categories_found": [],
"sampled_tracking_page_count": 0,
"sampled_form_privacy_gap_count": 1,
"sitemap_candidate_source_count": 1
},
"page_analysis": {
"h1": [
"Location finden:",
"Crew finden:",
"Firma/Behörde finden:",
"<span>News</span>"
],
"h2": [
"Registriere dich für unseren Newsletter",
"Noch Fragen?<br>Schreib uns eine Nachricht"
],
"title": "Berlin Brandenburg Film Commission",
"keywords": [
[
"agenturen",
24
],
[
"produktion",
22
],
[
"facebook",
21
],
[
"berlin-brandenburg",
19
],
[
"behörden",
18
],
[
"crew",
16
],
[
"medienboard",
14
],
[
"locations",
13
],
[
"supervisor",
13
],
[
"vermietung",
13
]
],
"language": "de",
"description": "Das Medienboard Berlin-Brandenburg ist die erste Anlaufstelle für die Film- und Medienwirtschaft in der Hauptstadtregion und fördert Filme, Serien und New Media.",
"favicon_url": "https://www.bbfc-cloud.de/apple-touch-icon.png",
"link_counts": {
"external": 64,
"internal": 74
},
"preview_image": "/cache/screenshots/actors.bbfc-cloud.de-160x150-422459eaf744db71b1.png",
"screenshot_url": "/cache/screenshots/actors.bbfc-cloud.de-160x150-422459eaf744db71b1.png",
"external_scripts": [
"https://assets.bbfc-cloud.de/assets/browser-update-be2b45cc.js",
"https://assets.bbfc-cloud.de/assets/sentry-e4ecaa5b.js",
"https://assets.bbfc-cloud.de/assets/public-e0afae08.js"
],
"browser_final_url": "https://www.bbfc-cloud.de/",
"meta_preview_image": "https://assets.bbfc-cloud.de/assets/public/landingpage/video-poster-1cbfe482.jpg",
"screenshot_renderer": "playwright-chromium",
"external_link_targets": [
{
"host": "facebook.com",
"count": 21,
"examples": [
{
"href": "https://www.facebook.com/BerlinBrandenburgFilmCommission",
"text": "Facebook"
},
{
"href": "https://www.facebook.com/BerlinBrandenburgFilmCommission",
"text": "Facebook"
},
{
"href": "https://www.facebook.com/BerlinBrandenburgFilmCommission",
"text": "Facebook"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 21
},
{
"host": "bbfc.de",
"count": 12,
"examples": [
{
"href": "https://www.bbfc.de/service/genehmigungen",
"text": "Genehmigungen"
},
{
"href": "https://www.bbfc.de/drehgenehmigungen/antragsformulare",
"text": "Antragsformulare"
},
{
"href": "https://www.bbfc.de/service/green-filming",
"text": "Green Filming"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 12
},
{
"host": "instagram.com",
"count": 9,
"examples": [
{
"href": "https://www.instagram.com/berlinbrandenburglocations",
"text": "Instagram"
},
{
"href": "https://www.instagram.com/berlinbrandenburglocations",
"text": "Instagram"
},
{
"href": "https://www.instagram.com/berlinbrandenburglocations",
"text": "Instagram"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 9
},
{
"host": "linkedin.com",
"count": 9,
"examples": [
{
"href": "https://www.linkedin.com/company/berlin-brandenburg-film-commission",
"text": "LinkedIn"
},
{
"href": "https://www.linkedin.com/company/berlin-brandenburg-film-commission",
"text": "LinkedIn"
},
{
"href": "https://www.linkedin.com/company/berlin-brandenburg-film-commission",
"text": "LinkedIn"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 9
},
{
"host": "youtube.com",
"count": 9,
"examples": [
{
"href": "https://www.youtube.com/@berlinbrandenburgfilmcommi2935",
"text": "YouTube"
},
{
"href": "https://www.youtube.com/@berlinbrandenburgfilmcommi2935",
"text": "YouTube"
},
{
"href": "https://www.youtube.com/@berlinbrandenburgfilmcommi2935",
"text": "YouTube"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 9
},
{
"host": "bbfc-cloud.de",
"count": 3,
"examples": [
{
"href": "https://www.bbfc-cloud.de/public/locations",
"text": "Locations"
},
{
"href": "https://www.bbfc-cloud.de/public/companies",
"text": "Production Guide"
},
{
"href": "https://www.bbfc-cloud.de/public/crew_profiles",
"text": "Crew Guide"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 3
},
{
"host": "medienboard.de",
"count": 1,
"examples": [
{
"href": "https://www.medienboard.de/barrierefreiheit",
"text": "Erklärung zur Barrierefreiheit"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 1
}
]
},
"browser_analysis": {
"cookies": {
"items": [
{
"name": "_prestage_session",
"domain": "www.bbfc-cloud.de",
"secure": true,
"expires": -1,
"http_only": true,
"same_site": "Lax"
}
],
"total": 1,
"third_party": 0
},
"storage": {
"total": 0,
"local_storage_keys": [],
"tracking_key_hints": [],
"local_storage_total": 0,
"session_storage_keys": [],
"session_storage_total": 0
},
"findings": [
{
"id": "unknown_vendor_jurisdiction",
"title": "Anbieter-Jurisdiktion nicht klar ableitbar",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "third_party_full_referrer_leak",
"count": 7,
"title": "Drittanbieter können vollen Referrer-Kontext erhalten",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "browser_keystroke_listener_signals",
"count": 33,
"title": "Viele Tastatur-/Eingabe-Listener im Browser erkannt",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"renderer": "playwright-chromium",
"final_url": "https://www.bbfc-cloud.de/",
"consent_ui": {
"accept_controls": [],
"accept_max_area": 0,
"reject_controls": [],
"reject_max_area": 0,
"settings_controls": [],
"first_layer_summary": "Akzeptieren 0 / Ablehnen 0 / Einstellungen 0",
"cookie_context_found": true,
"reject_less_prominent": false,
"visible_control_count": 19,
"reject_prominence_ratio": 0
},
"gpc_signal": {
"error": "",
"enabled": true,
"storage": {
"total": 0,
"tracking_key_hints": [],
"local_storage_total": 0,
"session_storage_total": 0
},
"cookie_count": 1,
"request_count": 24,
"sec_gpc_header": true,
"navigator_value": true,
"contacted_domains": [
{
"host": "assets.bbfc-cloud.de",
"count": 15,
"category": "other",
"provider": "assets.bbfc-cloud.de",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"font": 3,
"image": 6,
"script": 3,
"stylesheet": 3
}
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"count": 7,
"category": "other",
"provider": "d98aqn5zv9lac.cloudfront.net",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"image": 7
}
},
{
"host": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"count": 1,
"category": "other",
"provider": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"media": 1
}
},
{
"host": "bbfc-cloud.de",
"count": 1,
"category": "other",
"provider": "bbfc-cloud.de",
"third_party": false,
"category_label": "Sonstige",
"resource_types": {
"document": 1
}
}
],
"contacted_domain_count": 4,
"privacy_relevant_domains": [],
"third_party_cookie_count": 0,
"third_party_domain_count": 3,
"privacy_relevant_domain_count": 0
},
"screenshot": {
"fit": "contain",
"width": 160,
"height": 150,
"source_width": 1024,
"source_height": 960,
"source_capture": "full_page",
"capture_version": "contain-v4-viewport-transparency-160x150"
},
"consent_apis": {
"cmpapi": false,
"tcfapi": false,
"onetrust": false,
"cookiebot": false,
"data_layer": false,
"cmp_detected": false,
"usercentrics": false,
"google_tag_data": false
},
"accept_signal": {
"error": "",
"enabled": false,
"storage": {
"total": 0,
"tracking_key_hints": [],
"local_storage_total": 0,
"session_storage_total": 0
},
"clicked_text": "",
"accept_clicked": false,
"accept_available": false,
"contacted_domains": [],
"contacted_domain_count": 0,
"new_domains_after_accept": [],
"privacy_relevant_domains": [],
"third_party_domain_count": 0,
"cookie_count_after_accept": 0,
"cookie_count_before_accept": 0,
"request_count_after_accept": 0,
"storage_count_after_accept": 0,
"request_count_before_accept": 0,
"new_cookie_count_after_accept": 0,
"privacy_relevant_domain_count": 0,
"new_request_count_after_accept": 0,
"third_party_cookie_count_after_accept": 0,
"storage_tracking_hint_count_after_accept": 0,
"new_privacy_relevant_domains_after_accept": [],
"new_privacy_relevant_domain_count_after_accept": 0
},
"request_count": 24,
"top_providers": [
{
"provider": "assets.bbfc-cloud.de",
"request_count": 15
},
{
"provider": "d98aqn5zv9lac.cloudfront.net",
"request_count": 7
},
{
"provider": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"request_count": 1
}
],
"request_samples": [
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "stylesheet",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "stylesheet",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "script",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "stylesheet",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "script",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "script",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 11,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 11,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 11,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 11,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 11,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 11,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 11,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"method": "GET",
"referrer": {
"host": "bbfc-cloud.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 1,
"query_keys": [],
"third_party": true,
"resource_type": "media",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "assets.bbfc-cloud.de",
"has_path": true,
"has_query": false,
"same_site": true,
"path_depth": 2,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 3,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "assets.bbfc-cloud.de",
"has_path": true,
"has_query": false,
"same_site": true,
"path_depth": 2,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 3,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "assets.bbfc-cloud.de",
"has_path": true,
"has_query": false,
"same_site": true,
"path_depth": 2,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 3,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "assets.bbfc-cloud.de",
"has_path": true,
"has_query": false,
"same_site": true,
"path_depth": 2,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "image",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "assets.bbfc-cloud.de",
"has_path": true,
"has_query": false,
"same_site": true,
"path_depth": 2,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "assets.bbfc-cloud.de",
"has_path": true,
"has_query": false,
"same_site": true,
"path_depth": 2,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"method": "GET",
"referrer": {
"host": "assets.bbfc-cloud.de",
"has_path": true,
"has_query": false,
"same_site": true,
"path_depth": 2,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
}
],
"cmp_consent_state": {
"tcf": {
"api_found": false,
"vendor_li": [],
"cmp_loaded": false,
"cmp_status": "",
"purpose_li": [],
"event_status": "",
"gdpr_applies": null,
"ping_success": false,
"policy_version": "",
"vendor_consents": [],
"vendor_li_count": 0,
"purpose_consents": [],
"purpose_li_count": 0,
"tc_string_length": 0,
"tc_string_present": false,
"vendor_consent_count": 0,
"purpose_consent_count": 0
},
"onetrust": {
"found": false,
"active_groups": [],
"active_group_count": 0
},
"cookiebot": {
"found": false,
"declined": false,
"consented": false,
"has_response": false,
"consent_marketing": null,
"consent_statistics": null,
"consent_preferences": null
},
"usercentrics": {
"found": false,
"has_response": false,
"services_count": 0,
"accepted_services_count": 0
}
},
"contacted_domains": [
{
"host": "assets.bbfc-cloud.de",
"count": 15,
"category": "other",
"provider": "assets.bbfc-cloud.de",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"font": 3,
"image": 6,
"script": 3,
"stylesheet": 3
}
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"count": 7,
"category": "other",
"provider": "d98aqn5zv9lac.cloudfront.net",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"image": 7
}
},
{
"host": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"count": 1,
"category": "other",
"provider": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"media": 1
}
},
{
"host": "bbfc-cloud.de",
"count": 1,
"category": "other",
"provider": "bbfc-cloud.de",
"third_party": false,
"category_label": "Sonstige",
"resource_types": {
"document": 1
}
}
],
"privacy_api_metrics": {
"api_calls": {
"mutation_observer_count": 39,
"keyboard_input_listener_count": 33
},
"beacon_count": 0,
"webgl_read_count": 0,
"canvas_read_count": 0,
"audio_context_count": 0,
"canvas_export_count": 0,
"fetch_keepalive_count": 0,
"webgl_parameter_count": 0,
"mutation_observer_count": 39,
"keyboard_input_listener_count": 33
},
"tcf_consent_analysis": {
"color": "green",
"score": 100,
"status": "unauffällig",
"summary": "TCF-Decoder: 0 Zweck(e) mit Consent/LI-Signal, 0 Vendor-Consent(s), 0 Vendor-LI-Signal(e).",
"findings": [],
"api_found": false,
"available": false,
"cmp_loaded": false,
"cmp_status": "",
"event_status": "",
"gdpr_applies": null,
"ping_success": false,
"purpose_rows": [
{
"id": 1,
"label": "Informationen auf einem Gerät speichern und/oder abrufen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 2,
"label": "Einfache Anzeigen auswählen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 3,
"label": "Personalisiertes Anzeigen-Profil erstellen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 4,
"label": "Personalisierte Anzeigen auswählen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 5,
"label": "Personalisiertes Inhalts-Profil erstellen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 6,
"label": "Personalisierte Inhalte auswählen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 7,
"label": "Anzeigen-Leistung messen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 8,
"label": "Inhalte-Leistung messen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 9,
"label": "Marktforschung zur Generierung von Erkenntnissen nutzen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 10,
"label": "Produkte entwickeln und verbessern",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 11,
"label": "Begrenzte Daten zur Anzeigen-Auswahl verwenden",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
}
],
"vendor_li_ids": [],
"policy_version": "",
"vendor_li_count": 0,
"purpose_li_count": 0,
"tc_string_length": 0,
"tc_string_present": false,
"vendor_consent_ids": [],
"granted_purpose_rows": [],
"vendor_consent_count": 0,
"purpose_consent_count": 0,
"high_risk_purpose_count": 0,
"medium_risk_purpose_count": 0
},
"viewport_transparency": {
"samples": [
{
"tag": "a",
"top": 799,
"href": "/privacy",
"left": 510,
"text": "Datenschutzerklärung",
"width": 156,
"height": 17,
"category": "privacy_notice"
}
],
"available": true,
"sample_count": 1,
"claim_boundary": "Sichtbarkeits-Evidence aus dem ersten Headless-Chromium-Viewport; keine Aussage ueber Footer nach Scrollen, Loginbereiche oder rechtliche Vollstaendigkeit.",
"viewport_width": 1024,
"category_counts": {
"privacy_notice": 1
},
"contact_visible": false,
"imprint_visible": false,
"viewport_height": 960,
"cookie_consent_visible": false,
"privacy_notice_visible": true
},
"consent_journey_matrix": {
"color": "green",
"items": [
{
"host": "assets.bbfc-cloud.de",
"states": {
"gpc": 15,
"default": 15
},
"category": "other",
"provider": "assets.bbfc-cloud.de",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 30
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"states": {
"gpc": 7,
"default": 7
},
"category": "other",
"provider": "d98aqn5zv9lac.cloudfront.net",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 14
},
{
"host": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"states": {
"gpc": 1,
"default": 1
},
"category": "other",
"provider": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 2
}
],
"score": 100,
"states": [
{
"id": "default",
"label": "Erstaufruf",
"description": "Kontakte ohne Nutzeraktion",
"domain_count": 3,
"request_count": 23,
"privacy_relevant_domain_count": 0
},
{
"id": "reject_new",
"label": "Nach Ablehnen neu",
"description": "Neue Kontakte nach Ablehnen-Klick",
"domain_count": 0,
"request_count": 0,
"privacy_relevant_domain_count": 0
},
{
"id": "accept_new",
"label": "Nach Akzeptieren neu",
"description": "Neue Kontakte nach Akzeptieren-Klick",
"domain_count": 0,
"request_count": 0,
"privacy_relevant_domain_count": 0
},
{
"id": "gpc",
"label": "GPC-Aufruf",
"description": "Kontakte bei Global Privacy Control",
"domain_count": 3,
"request_count": 23,
"privacy_relevant_domain_count": 0
}
],
"status": "unauffällig",
"summary": "Consent-Journey: 0 neue Datenschutz-Domain(s) nach Ablehnen, 0 nach Akzeptieren, 0 im GPC-Aufruf.",
"gpc_privacy_relevant_domain_count": 0,
"accept_privacy_relevant_domain_count": 0,
"reject_privacy_relevant_domain_count": 0
},
"consent_state_evidence": {
"rows": [
{
"id": "default",
"label": "Erstaufruf",
"status": "ohne Nutzeraktion",
"evidence": "Baseline aus erstem Chromium-Aufruf ohne Banner-Interaktion.",
"risk_level": "niedrig",
"cookie_count": 1,
"domain_count": 4,
"request_count": 24,
"storage_total": 0,
"new_cookie_count": 1,
"third_party_cookie_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"id": "reject",
"label": "Nach Ablehnen",
"status": "nicht verfügbar",
"evidence": "",
"risk_level": "niedrig",
"cookie_count": 1,
"domain_count": 0,
"request_count": 0,
"storage_total": 0,
"new_cookie_count": 0,
"third_party_cookie_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"id": "accept",
"label": "Nach Akzeptieren",
"status": "nicht ausgeführt",
"evidence": "",
"risk_level": "niedrig",
"cookie_count": 0,
"domain_count": 0,
"request_count": 0,
"storage_total": 0,
"new_cookie_count": 0,
"third_party_cookie_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"id": "gpc",
"label": "GPC-Aufruf",
"status": "aktiv",
"evidence": "Navigator-GPC und Sec-GPC wurden im gesonderten Browserlauf gesetzt.",
"risk_level": "niedrig",
"cookie_count": 1,
"domain_count": 4,
"request_count": 24,
"storage_total": 0,
"new_cookie_count": 0,
"third_party_cookie_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
}
],
"color": "green",
"score": 100,
"status": "unauffällig",
"summary": "Consent-State-Evidence: 4 Zustände verglichen, 0 hoch auffällig, 0 mittel auffällig.",
"findings": [],
"available": true,
"high_count": 0,
"medium_count": 0
},
"contacted_domain_count": 4,
"fingerprinting_analysis": {
"color": "yellow",
"score": 88,
"checks": [
{
"id": "canvas",
"ok": true,
"count": 0,
"label": "Canvas-Auslese",
"detail": "0 Pixel-Lesezugriff(e), 0 Export(e)."
},
{
"id": "webgl",
"ok": true,
"count": 0,
"label": "WebGL-Merkmale",
"detail": "0 Parameterzugriff(e), 0 Pixel-Lesezugriff(e)."
},
{
"id": "audio",
"ok": true,
"count": 0,
"label": "AudioContext",
"detail": "0 AudioContext/OfflineAudioContext-Aufruf(e)."
},
{
"id": "session_replay",
"ok": true,
"count": 0,
"label": "Session-Replay-Anbieter",
"detail": "Keine bekannten Anbieter erkannt."
},
{
"id": "input_listeners",
"ok": false,
"count": 33,
"label": "Tastatur-/Eingabe-Listener",
"detail": "33 Tastatur-/Input-Listener, 22 Interaktions-Listener, 39 MutationObserver."
}
],
"status": "prüfen",
"metrics": {
"webgl_read_count": 0,
"canvas_read_count": 0,
"audio_context_count": 0,
"canvas_export_count": 0,
"webgl_parameter_count": 0,
"mutation_observer_count": 39,
"keyboard_input_listener_count": 33
},
"summary": "1 Fingerprinting-/Session-Replay-Hinweis(e) aus dem Browserlauf.",
"findings": [
{
"id": "browser_keystroke_listener_signals",
"count": 33,
"title": "Viele Tastatur-/Eingabe-Listener im Browser erkannt",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"finding_count": 1,
"session_replay_domains": []
},
"privacy_relevant_domains": [],
"provider_category_counts": {
"other": 3
},
"provider_category_labels": {
"other": "other"
},
"third_party_domain_count": 3,
"embedded_content_analysis": {
"color": "green",
"items": [],
"score": 100,
"status": "unauffällig",
"summary": "0 externe Embed-/Widget-Dienst(e), 0 davon im ersten Browseraufruf geladen.",
"findings": [],
"map_count": 0,
"total_count": 0,
"video_count": 0,
"captcha_count": 0,
"category_counts": [],
"social_widget_count": 0,
"loaded_pre_consent_count": 0,
"request_count_by_provider": []
},
"referrer_leakage_analysis": {
"color": "orange",
"items": [
{
"host": "assets.bbfc-cloud.de",
"category": "other",
"provider": "assets.bbfc-cloud.de",
"query_keys": [],
"risk_reason": "voller Referrer-Pfad oder Suchparameter an Drittanbieter",
"referrer_host": "assets.bbfc-cloud.de",
"resource_type": "image",
"category_label": "Sonstige",
"referrer_has_path": true,
"referrer_has_query": false,
"referrer_query_keys": [],
"referrer_sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"category": "other",
"provider": "assets.bbfc-cloud.de",
"query_keys": [],
"risk_reason": "voller Referrer-Pfad oder Suchparameter an Drittanbieter",
"referrer_host": "assets.bbfc-cloud.de",
"resource_type": "image",
"category_label": "Sonstige",
"referrer_has_path": true,
"referrer_has_query": false,
"referrer_query_keys": [],
"referrer_sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"category": "other",
"provider": "assets.bbfc-cloud.de",
"query_keys": [],
"risk_reason": "voller Referrer-Pfad oder Suchparameter an Drittanbieter",
"referrer_host": "assets.bbfc-cloud.de",
"resource_type": "image",
"category_label": "Sonstige",
"referrer_has_path": true,
"referrer_has_query": false,
"referrer_query_keys": [],
"referrer_sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"category": "other",
"provider": "assets.bbfc-cloud.de",
"query_keys": [],
"risk_reason": "voller Referrer-Pfad oder Suchparameter an Drittanbieter",
"referrer_host": "assets.bbfc-cloud.de",
"resource_type": "image",
"category_label": "Sonstige",
"referrer_has_path": true,
"referrer_has_query": false,
"referrer_query_keys": [],
"referrer_sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"category": "other",
"provider": "assets.bbfc-cloud.de",
"query_keys": [],
"risk_reason": "voller Referrer-Pfad oder Suchparameter an Drittanbieter",
"referrer_host": "assets.bbfc-cloud.de",
"resource_type": "font",
"category_label": "Sonstige",
"referrer_has_path": true,
"referrer_has_query": false,
"referrer_query_keys": [],
"referrer_sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"category": "other",
"provider": "assets.bbfc-cloud.de",
"query_keys": [],
"risk_reason": "voller Referrer-Pfad oder Suchparameter an Drittanbieter",
"referrer_host": "assets.bbfc-cloud.de",
"resource_type": "font",
"category_label": "Sonstige",
"referrer_has_path": true,
"referrer_has_query": false,
"referrer_query_keys": [],
"referrer_sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"category": "other",
"provider": "assets.bbfc-cloud.de",
"query_keys": [],
"risk_reason": "voller Referrer-Pfad oder Suchparameter an Drittanbieter",
"referrer_host": "assets.bbfc-cloud.de",
"resource_type": "font",
"category_label": "Sonstige",
"referrer_has_path": true,
"referrer_has_query": false,
"referrer_query_keys": [],
"referrer_sensitive_query_key_count": 0
}
],
"score": 65,
"status": "auffällig",
"summary": "1 Drittanbieter-Domain(s) mit Referrer-/URL-Leak-Prüfbedarf, 0 sensible Query-Kontexte.",
"findings": [
{
"id": "third_party_full_referrer_leak",
"count": 7,
"title": "Drittanbieter können vollen Referrer-Kontext erhalten",
"public": true,
"category": "privacy",
"severity": "warning"
}
],
"sample_count": 23,
"full_referrer_count": 7,
"page_url_param_count": 0,
"affected_domain_count": 1,
"sensitive_query_count": 0
},
"third_party_contact_matrix": {
"color": "green",
"items": [
{
"host": "assets.bbfc-cloud.de",
"region": "EU/EWR",
"status": "prüfen",
"category": "other",
"provider": "assets.bbfc-cloud.de",
"risk_level": "niedrig",
"request_count": 15,
"transfer_risk": "niedrig",
"category_label": "Sonstige",
"resource_types": [
{
"type": "image",
"count": 6
},
{
"type": "font",
"count": 3
},
{
"type": "script",
"count": 3
},
{
"type": "stylesheet",
"count": 3
}
],
"transfer_label": "EU/EWR",
"privacy_relevant": false
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"region": "unbekannt",
"status": "prüfen",
"category": "other",
"provider": "d98aqn5zv9lac.cloudfront.net",
"risk_level": "niedrig",
"request_count": 7,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"resource_types": [
{
"type": "image",
"count": 7
}
],
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"region": "unbekannt",
"status": "prüfen",
"category": "other",
"provider": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"risk_level": "niedrig",
"request_count": 1,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"resource_types": [
{
"type": "media",
"count": 1
}
],
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
}
],
"score": 91,
"status": "unauffällig",
"summary": "3 Drittanbieter-Domain(s) beim ersten Browseraufruf, davon 0 datenschutzrelevant.",
"category_counts": {
"Sonstige": 3
},
"total_domain_count": 3,
"total_request_count": 23,
"privacy_relevant_count": 0,
"transfer_risk_analysis": {
"color": "yellow",
"items": [
{
"host": "assets.bbfc-cloud.de",
"region": "EU/EWR",
"provider": "assets.bbfc-cloud.de",
"request_count": 15,
"transfer_risk": "niedrig",
"category_label": "Sonstige",
"transfer_label": "EU/EWR",
"privacy_relevant": false
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"region": "unbekannt",
"provider": "d98aqn5zv9lac.cloudfront.net",
"request_count": 7,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"region": "unbekannt",
"provider": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"request_count": 1,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
}
],
"score": 84,
"status": "prüfen",
"summary": "3 Drittanbieter für Transfer-/Jurisdiktionsprüfung, 0 mit hohem Prüfbedarf, 2 unklar.",
"findings": [
{
"id": "unknown_vendor_jurisdiction",
"title": "Anbieter-Jurisdiktion nicht klar ableitbar",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"unknown_count": 2,
"high_risk_count": 0,
"total_vendor_count": 3,
"third_country_count": 0
}
},
"privacy_relevant_domain_count": 0,
"tracking_pixel_beacon_analysis": {
"color": "green",
"items": [],
"score": 100,
"status": "unauffällig",
"summary": "0 Pixel-/Bildtracking-Hinweis(e), 0 Beacon-/Telemetry-Hinweis(e), 0 Link-Ping(s).",
"findings": [],
"pixel_count": 0,
"link_ping_count": 0,
"telemetry_count": 0,
"beacon_api_count": 0,
"third_party_count": 0,
"fetch_keepalive_count": 0,
"privacy_relevant_count": 0,
"beacon_code_reference_count": 0,
"fetch_keepalive_reference_count": 0
}
},
"privacy_analysis": {
"cookies": {
"items": [
{
"name": "_prestage_session",
"secure": true,
"samesite": true,
"tracking": false,
"pre_consent": true,
"likely_essential": true
}
],
"total": 1,
"tracking": [],
"pre_consent": [
"_prestage_session"
],
"missing_secure": [],
"missing_samesite": [],
"pre_consent_tracking": [],
"pre_consent_nonessential": []
},
"findings": [],
"tracking_ids": [],
"tracking_scripts": [],
"consent_hint_found": false,
"privacy_policy_hint_found": true
},
"consent_audit": {
"color": "green",
"score": 100,
"checks": [
{
"id": "banner_visible",
"ok": true,
"label": "Cookie-/Consent-Hinweis sichtbar",
"detail": "Ein Hinweis mit Cookie-/Einwilligungsbezug wurde im sichtbaren Text erkannt."
},
{
"id": "reject_visible",
"ok": true,
"label": "Ablehnen gleichwertig erreichbar",
"detail": "Ablehnen oder nur notwendige Cookies wurde im Text oder Browser erkannt. Browser-Buttons: 0."
},
{
"id": "settings_visible",
"ok": true,
"label": "Einstellungen oder Auswahl vorhanden",
"detail": "Eine Einstellungs- oder Auswahlmoeglichkeit wurde im Text oder Browser erkannt. Browser-Buttons: 0."
},
{
"id": "browser_reject_visible",
"ok": true,
"label": "Ablehnen im sichtbaren Banner",
"detail": "Sichtbare Banner-Controls: Akzeptieren 0, Ablehnen 0, Einstellungen 0."
},
{
"id": "browser_settings_visible",
"ok": true,
"label": "Einstellungen im sichtbaren Banner",
"detail": "Sichtbare Banner-Controls: Akzeptieren 0, Ablehnen 0, Einstellungen 0."
},
{
"id": "reject_equally_prominent",
"ok": true,
"label": "Ablehnen nicht deutlich schwaecher dargestellt",
"detail": "Groessen-Verhältnis Ablehnen/Akzeptieren: nicht messbar."
},
{
"id": "reject_button_clickable",
"ok": true,
"label": "Ablehnen technisch klickbar",
"detail": "Wenn ein Ablehnen-Button sichtbar ist, klickt SaferPage ihn im Chromium-Browser einmal an."
},
{
"id": "no_new_cookies_after_reject",
"ok": true,
"label": "Keine neuen Cookies nach Ablehnen",
"detail": "0 neue Cookie(s) nach dem Ablehnen-Klick."
},
{
"id": "no_tracking_storage_after_reject",
"ok": true,
"label": "Kein Tracking-Storage nach Ablehnen",
"detail": "0 Tracking-Hinweis(e) im Web Storage nach Ablehnen."
},
{
"id": "no_privacy_domains_after_reject",
"ok": true,
"label": "Keine neuen Tracking-Kontakte nach Ablehnen",
"detail": "0 neue datenschutzrelevante Domain(s) nach Ablehnen."
},
{
"id": "gpc_signal_respected",
"ok": true,
"label": "GPC-Signal ohne Tracking-Hinweise",
"detail": "GPC-Aufruf: 0 datenschutzrelevante Domain(s), 0 Drittanbieter-Cookie(s), 0 Storage-Hinweis(e)."
},
{
"id": "no_tracking_cookies_before_consent",
"ok": true,
"label": "Keine Tracking-Cookies vor Einwilligung",
"detail": "0 Tracking-Cookie(s) im Erstaufruf."
},
{
"id": "no_nonessential_cookies_before_consent",
"ok": true,
"label": "Keine nicht notwendigen Cookies vor Einwilligung",
"detail": "0 moeglicherweise nicht notwendige Cookie(s) im Erstaufruf."
},
{
"id": "third_parties_explained",
"ok": true,
"label": "Drittanbieter begrenzt und erklaerbar",
"detail": "0 datenschutzrelevante Drittanbieter-Domain(s), 3 Drittanbieter insgesamt."
},
{
"id": "storage_without_tracking_hints",
"ok": true,
"label": "Web Storage ohne Tracking-Hinweise",
"detail": "0 Storage-Key(s), 0 Tracking-Hinweis(e)."
},
{
"id": "cmp_api_detected_when_needed",
"ok": true,
"label": "CMP-/TCF-Signal bei Tracking erkennbar",
"detail": "Gängige CMP-/TCF-Indikatoren: __tcfapi, __cmp, Cookiebot, OneTrust oder Usercentrics."
},
{
"id": "accept_click_documented",
"ok": true,
"label": "Akzeptieren-Klick nachvollziehbar",
"detail": "Accept-Test: nicht ausgefuehrt, neue Requests 0, neue Cookies 0, neue Datenschutz-Domains 0."
},
{
"id": "cmp_state_readable",
"ok": true,
"label": "CMP-/TCF-Zustand auslesbar",
"detail": "TCF TC-String: nein, Cookiebot: nein, OneTrust: nein, Usercentrics: nein."
},
{
"id": "cmp_default_restrictive",
"ok": true,
"label": "CMP-Default wirkt restriktiv",
"detail": "TCF Purposes erlaubt: 0, TCF Vendors erlaubt: 0, Cookiebot Statistik/Marketing: nein."
}
],
"status": "unauffällig",
"summary": "Consent und Erstaufruf wirken im passiven Check weitgehend sauber.",
"evidence": [
"1 Cookie(s) beim ersten Aufruf aus HTTP-Headern und Chromium",
"0 Tracking-Script(s) im HTML",
"0 datenschutzrelevante Drittanbieter-Domain(s)",
"0 Storage-Key(s), 0 Tracking-Hinweis(e)",
"Consent-Banner-Controls: Akzeptieren 0, Ablehnen 0, Einstellungen 0",
"Ablehnen/Akzeptieren-Prominenz: nicht messbar",
"Reject-Test: nicht ausgefuehrt, neue Cookies 0, Tracking-Storage 0, neue Datenschutz-Domains 0",
"Accept-Test: nicht ausgefuehrt, neue Requests 0, neue Cookies 0, neue Datenschutz-Domains 0, Drittanbieter-Cookies 0",
"CMP-State: TCF-String nein, TCF Purposes 0, TCF Vendors 0, Cookiebot nein, OneTrust-Gruppen 0, Usercentrics-Services 0",
"GPC-Test: aktiv, Datenschutz-Domains 0, Drittanbieter-Cookies 0, Storage-Hinweise 0",
"CMP-/TCF-Signal: nein",
"Google Consent Default: nein"
],
"gpc_enabled": true,
"cmp_detected": false,
"blocking_plan": {
"items": [],
"summary": "Kein Google-Tag und keine Google-Domain erkannt; kein Google-spezifischer Pre-Consent-Blockierplan aus dieser Evidenz erforderlich.",
"available": false,
"high_count": 0,
"total_count": 0,
"type_counts": [],
"medium_count": 0
},
"tcf_api_found": false,
"cookiebot_found": false,
"accept_test_enabled": false,
"browser_cookie_count": 1,
"accept_button_clicked": false,
"browser_storage_count": 0,
"reject_button_clicked": false,
"reject_less_prominent": false,
"tcf_tc_string_present": false,
"tracking_script_count": 0,
"accept_button_available": false,
"reject_button_available": false,
"reject_prominence_ratio": 0,
"pre_consent_cookie_count": 1,
"pre_consent_cookie_names": [
"_prestage_session"
],
"tcf_vendor_consent_count": 0,
"third_party_domain_count": 3,
"tcf_purpose_consent_count": 0,
"onetrust_active_group_count": 0,
"usercentrics_services_count": 0,
"browser_accept_control_count": 0,
"browser_cookie_context_found": true,
"browser_reject_control_count": 0,
"gpc_third_party_cookie_count": 0,
"post_accept_new_cookie_count": 0,
"post_reject_new_cookie_count": 0,
"post_accept_new_request_count": 0,
"browser_settings_control_count": 0,
"gpc_storage_tracking_hint_count": 0,
"cookiebot_marketing_or_statistics": false,
"gpc_privacy_relevant_domain_count": 0,
"pre_consent_tracking_cookie_count": 0,
"pre_consent_tracking_cookie_names": [],
"privacy_relevant_third_party_count": 0,
"browser_storage_tracking_hint_count": 0,
"post_accept_third_party_cookie_count": 0,
"pre_consent_nonessential_cookie_count": 0,
"pre_consent_nonessential_cookie_names": [],
"post_accept_storage_tracking_hint_count": 0,
"post_reject_storage_tracking_hint_count": 0,
"post_accept_privacy_relevant_domain_count": 0,
"post_reject_privacy_relevant_domain_count": 0
},
"cookie_inventory": {
"color": "green",
"items": [
{
"name": "_prestage_session",
"domain": "actors.bbfc-cloud.de",
"secure": true,
"sources": [
"http_set_cookie"
],
"category": "necessary",
"provider": "actors.bbfc-cloud.de",
"tracking": false,
"http_only": null,
"same_site": "True",
"expires_at": "",
"long_lived": false,
"persistent": false,
"first_party": true,
"origin_host": "actors.bbfc-cloud.de",
"pre_consent": true,
"source_label": "HTTP Set-Cookie",
"category_label": "Notwendig",
"retention_risk": "niedrig",
"expires_in_days": null,
"origin_evidence": "Vom geprüften Host oder aus dem Browser-Erstaufruf abgeleitet.",
"origin_provider": "actors.bbfc-cloud.de",
"retention_class": "session",
"retention_label": "Session",
"likely_essential": true,
"origin_script_url": "",
"origin_resource_type": ""
},
{
"name": "_prestage_session",
"domain": "bbfc-cloud.de",
"secure": true,
"sources": [
"browser_first_load"
],
"category": "necessary",
"provider": "bbfc-cloud.de",
"tracking": false,
"http_only": true,
"same_site": "Lax",
"expires_at": "",
"long_lived": false,
"persistent": false,
"first_party": true,
"origin_host": "bbfc-cloud.de",
"pre_consent": true,
"source_label": "Chromium-Erstaufruf",
"category_label": "Notwendig",
"retention_risk": "niedrig",
"expires_in_days": null,
"origin_evidence": "1 Browser-Request(s) · document:1",
"origin_provider": "bbfc-cloud.de",
"retention_class": "session",
"retention_label": "Session",
"likely_essential": true,
"origin_script_url": "",
"origin_resource_type": ""
}
],
"score": 100,
"total": 2,
"status": "unauffällig",
"summary": "2 Cookie(s) inventarisiert: 0 Tracking-/Werbe-Cookie(s), 0 Drittanbieter-Cookie(s), 0 langlebige Cookie(s), 0 sehr lange Laufzeit(en).",
"findings": [],
"categories": {
"necessary": 2
},
"tracking_count": 0,
"category_labels": {
"consent": "Consent",
"payment": "Zahlung",
"unknown": "Unklar",
"security": "Sicherheit",
"analytics": "Analytics",
"necessary": "Notwendig",
"functional": "Funktional",
"advertising": "Werbung"
},
"long_lived_count": 0,
"persistent_count": 0,
"first_party_count": 2,
"pre_consent_count": 2,
"retention_classes": {
"session": 2
},
"third_party_count": 0,
"missing_secure_count": 0,
"retention_risk_count": 0,
"retention_risk_items": [],
"very_long_lived_count": 0,
"missing_samesite_count": 0,
"persistent_unknown_count": 0,
"long_lived_tracking_count": 0
},
"security_header_analysis": {
"color": "orange",
"score": 64,
"checks": [
{
"ok": true,
"note": "",
"label": "HSTS",
"value": "max-age=63072000; includeSubDomains",
"header": "strict-transport-security",
"present": true,
"purpose": "Erzwingt HTTPS nach dem ersten sicheren Aufruf.",
"severity": "warning"
},
{
"ok": true,
"note": "",
"label": "Content-Security-Policy",
"value": "base-uri 'none'; default-src 'none'; child-src blob:; font-src data: https://assets.bbfc-cloud.de https://fonts.gstatic.com; img-src 'self' data: blob: android-webview-video-poster: android-webview: https://bbfc-cloud.s3",
"header": "content-security-policy",
"present": true,
"purpose": "Begrenzt Skript-, Frame- und Ressourcenquellen im Browser.",
"severity": "warning"
},
{
"ok": true,
"note": "",
"label": "X-Frame-Options",
"value": "SAMEORIGIN",
"header": "x-frame-options",
"present": true,
"purpose": "Reduziert Clickjacking-Risiken bei älteren Browsern.",
"severity": "warning"
},
{
"ok": true,
"note": "",
"label": "X-Content-Type-Options",
"value": "nosniff",
"header": "x-content-type-options",
"present": true,
"purpose": "Verhindert MIME-Sniffing bei Skripten und Stylesheets.",
"severity": "warning"
},
{
"ok": true,
"note": "",
"label": "Referrer-Policy",
"value": "strict-origin-when-cross-origin",
"header": "referrer-policy",
"present": true,
"purpose": "Begrenzt, welche URL-Informationen an Zielseiten weitergegeben werden.",
"severity": "info"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Permissions-Policy",
"value": "",
"header": "permissions-policy",
"present": false,
"purpose": "Begrenzt sensible Browser-Funktionen pro Seite.",
"severity": "info"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Cross-Origin-Opener-Policy",
"value": "",
"header": "cross-origin-opener-policy",
"present": false,
"purpose": "Isoliert Top-Level-Fenster und reduziert Cross-Origin-Seiteneffekte.",
"severity": "info"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Cross-Origin-Resource-Policy",
"value": "",
"header": "cross-origin-resource-policy",
"present": false,
"purpose": "Begrenzt, welche fremden Seiten Ressourcen einbetten dürfen.",
"severity": "info"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Cross-Origin-Embedder-Policy",
"value": "",
"header": "cross-origin-embedder-policy",
"present": false,
"purpose": "Erzwingt kontrollierte Cross-Origin-Einbettungen und kann Cross-Origin Isolation ermöglichen.",
"severity": "info"
}
],
"status": "auffällig",
"missing": [
"Permissions-Policy",
"Cross-Origin-Opener-Policy",
"Cross-Origin-Resource-Policy",
"Cross-Origin-Embedder-Policy"
],
"summary": "5 von 9 wichtigen Security-Headern vorhanden, 5 korrekt bewertet. CSP wirksam mit 17 Direktive(n), 2 Warnung(en), 0 Hinweis(e).",
"findings": [
{
"id": "csp_unsafe_inline",
"title": "CSP erlaubt unsafe-inline für Skripte",
"public": true,
"category": "security_headers",
"severity": "warning"
},
{
"id": "csp_unsafe_eval",
"title": "CSP erlaubt eval-nahe Skriptausführung",
"public": true,
"category": "security_headers",
"severity": "warning"
}
],
"ok_count": 5,
"weak_count": 0,
"csp_analysis": {
"color": "orange",
"score": 64,
"status": "auffällig",
"summary": "CSP wirksam mit 17 Direktive(n), 2 Warnung(en), 0 Hinweis(e).",
"enforced": true,
"findings": [
{
"id": "csp_unsafe_inline",
"title": "CSP erlaubt unsafe-inline für Skripte",
"public": true,
"category": "security_headers",
"severity": "warning"
},
{
"id": "csp_unsafe_eval",
"title": "CSP erlaubt eval-nahe Skriptausführung",
"public": true,
"category": "security_headers",
"severity": "warning"
}
],
"available": true,
"directives": [
{
"name": "base-uri",
"value": "'none'",
"values": [
"'none'"
]
},
{
"name": "block-all-mixed-content",
"value": "",
"values": []
},
{
"name": "child-src",
"value": "blob:",
"values": [
"blob:"
]
},
{
"name": "connect-src",
"value": "'self' https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://o4507482697236480.ingest.de.sentry.io https://maps.googleapis.com https://vimeo.com wss://global.vss.twilio.com wss://sdkgw.us1.twilio.com https://chatapi.help",
"values": [
"'self'",
"https://bbfc-cloud.s3.eu-west-1.amazonaws.com",
"https://o4507482697236480.ingest.de.sentry.io",
"https://maps.googleapis.com",
"https://vimeo.com",
"wss://global.vss.twilio.com",
"wss://sdkgw.us1.twilio.com",
"https://chatapi.helpscout.net",
"https://beaconapi.helpscout.net",
"https://d3hb14vkzrxvla.cloudfront.net",
"wss://*.pusher.com"
]
},
{
"name": "default-src",
"value": "'none'",
"values": [
"'none'"
]
},
{
"name": "font-src",
"value": "data: https://assets.bbfc-cloud.de https://fonts.gstatic.com",
"values": [
"data:",
"https://assets.bbfc-cloud.de",
"https://fonts.gstatic.com"
]
},
{
"name": "form-action",
"value": "'self' https://*.facebook.com https://accounts.google.com https://login.microsoftonline.com",
"values": [
"'self'",
"https://*.facebook.com",
"https://accounts.google.com",
"https://login.microsoftonline.com"
]
},
{
"name": "frame-ancestors",
"value": "'none'",
"values": [
"'none'"
]
},
{
"name": "frame-src",
"value": "https://www.filmmakers.eu",
"values": [
"https://www.filmmakers.eu"
]
},
{
"name": "img-src",
"value": "'self' data: blob: android-webview-video-poster: android-webview: https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://bbfc-cloud-public.s3.eu-west-1.amazonaws.com https://assets.bbfc-cloud.de https://d98aqn5zv9lac.clou",
"values": [
"'self'",
"data:",
"blob:",
"android-webview-video-poster:",
"android-webview:",
"https://bbfc-cloud.s3.eu-west-1.amazonaws.com",
"https://bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"https://assets.bbfc-cloud.de",
"https://d98aqn5zv9lac.cloudfront.net",
"https://static.bbfc-cloud.de",
"https://maps.gstatic.com",
"https://maps.googleapis.com",
"https://img.youtube.com",
"https://i.vimeocdn.com",
"https://d33v4339jhl8k0.cloudfront.net"
]
},
{
"name": "manifest-src",
"value": "'self' https://assets.bbfc-cloud.de",
"values": [
"'self'",
"https://assets.bbfc-cloud.de"
]
},
{
"name": "media-src",
"value": "mediastream: https://static.bbfc-cloud.de https://bbfc-cloud.s3.eu-west-1.amazonaws.com https://bbfc-cloud-public.s3.eu-west-1.amazonaws.com https://static.filmmakers.eu https://static.castupload.com",
"values": [
"mediastream:",
"https://static.bbfc-cloud.de",
"https://bbfc-cloud.s3.eu-west-1.amazonaws.com",
"https://bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"https://static.filmmakers.eu",
"https://static.castupload.com"
]
},
{
"name": "object-src",
"value": "'none'",
"values": [
"'none'"
]
},
{
"name": "report-uri",
"value": "https://o4507482697236480.ingest.de.sentry.io/api/4507906798780496/security/?sentry_key=698b0552c0fe20fe9d31ce1186e5d5e8",
"values": [
"https://o4507482697236480.ingest.de.sentry.io/api/4507906798780496/security/?sentry_key=698b0552c0fe20fe9d31ce1186e5d5e8"
]
},
{
"name": "script-src",
"value": "'self' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' 'report-sample' https://assets.bbfc-cloud.de https://maps.googleapis.com https://beacon-v2.helpscout.net https://sdk.twilio.com 'nonce-zkUJBdPm8DyjaRSYx5WIBQ=='",
"values": [
"'self'",
"'strict-dynamic'",
"'unsafe-inline'",
"'unsafe-eval'",
"'report-sample'",
"https://assets.bbfc-cloud.de",
"https://maps.googleapis.com",
"https://beacon-v2.helpscout.net",
"https://sdk.twilio.com",
"'nonce-zkUJBdPm8DyjaRSYx5WIBQ=='"
]
},
{
"name": "style-src",
"value": "'unsafe-inline' https://assets.bbfc-cloud.de https://fonts.googleapis.com",
"values": [
"'unsafe-inline'",
"https://assets.bbfc-cloud.de",
"https://fonts.googleapis.com"
]
},
{
"name": "worker-src",
"value": "'self'",
"values": [
"'self'"
]
}
],
"info_count": 0,
"report_only": false,
"finding_count": 2,
"warning_count": 2
},
"missing_count": 4,
"present_count": 5,
"missing_info_count": 4,
"missing_warning_count": 0
},
"infrastructure_analysis": {
"signals": {
"caa": true,
"dnssec": true,
"final_https": true,
"tls_version": "TLSv1.3",
"hsts_enabled": true,
"address_count": 4,
"ipv6_available": false,
"email_protection": {
"mx": true,
"spf": false,
"dmarc": false
},
"certificate_valid": true,
"certificate_issuer": "R13",
"certificate_alt_names": [
"actors.bbfc-cloud.de"
],
"multiple_ip_addresses": true,
"certificate_expires_at": "Aug 22 23:41:48 2026 GMT",
"certificate_days_remaining": 64,
"certificate_hostname_matches": true
},
"findings": [
{
"id": "dmarc_missing",
"title": "DMARC fehlt",
"public": true,
"category": "email",
"severity": "info"
}
],
"risk_level": "low",
"positive_signals": [
"Mehrere IP-Adressen gefunden: Hinweis auf redundante Infrastruktur oder CDN.",
"Moderne TLS-Version aktiv: TLSv1.3.",
"HSTS ist aktiv.",
"CAA-Records begrenzen Zertifikatsaussteller."
]
},
"performance_analysis": {
"score": 94,
"signals": {
"compressed": false,
"duration_ms": 655,
"image_count": 9,
"script_count": 3,
"cache_control": "max-age=0, private, must-revalidate",
"content_length": 133613,
"viewport_found": true,
"stylesheet_count": 3
},
"findings": [
{
"id": "compression_missing",
"title": "Komprimierung nicht erkannt",
"public": true,
"category": "performance",
"severity": "info"
}
],
"risk_level": "medium"
},
"accessibility_analysis": {
"color": "yellow",
"score": 76,
"status": "prüfen",
"signals": {
"h1_count": 4,
"image_count": 9,
"button_count": 15,
"heading_count": 13,
"viewport_found": true,
"html_lang_found": true,
"form_field_count": 15,
"image_missing_alt_count": 0,
"buttons_without_name_count": 6,
"form_fields_without_label_count": 0
},
"summary": "9 Bild(er), 15 Formularfeld(er), 15 Button(s) im passiven HTML-Sample auf Basis-Barrierefreiheit geprüft.",
"findings": [
{
"id": "button_name_missing",
"count": 6,
"title": "Buttons ohne erkennbaren Namen",
"public": true,
"category": "accessibility",
"severity": "warning",
"evidence_items": [
"type=button",
"type=button",
"type=button",
"type=button",
"type=button",
"type=button"
]
}
],
"wcag_matrix": {
"rows": [
{
"id": "wcag_non_text_content",
"ok": true,
"wcag": "WCAG 1.1.1 Non-text Content",
"title": "Alternativtexte für Bilder",
"impact": "niedrig",
"status": "ok",
"evidence": "0 von 9 Bild(er) ohne alt-Text im HTML-Sample."
},
{
"id": "wcag_form_labels",
"ok": true,
"wcag": "WCAG 1.3.1 Info and Relationships / 3.3.2 Labels or Instructions",
"title": "Formularfelder beschriften",
"impact": "niedrig",
"status": "ok",
"evidence": "0 von 15 Formularfeld(er) ohne erkennbare Beschriftung."
},
{
"id": "wcag_button_names",
"ok": false,
"wcag": "WCAG 4.1.2 Name, Role, Value",
"title": "Buttons mit Namen versehen",
"impact": "hoch",
"status": "prüfen",
"evidence": "6 von 15 Button(s) ohne erkennbaren Namen."
},
{
"id": "wcag_page_language",
"ok": true,
"wcag": "WCAG 3.1.1 Language of Page",
"title": "Seitensprache auszeichnen",
"impact": "niedrig",
"status": "ok",
"evidence": "HTML-lang-Attribut gefunden."
},
{
"id": "wcag_heading_structure",
"ok": true,
"wcag": "WCAG 1.3.1 Info and Relationships / 2.4.6 Headings and Labels",
"title": "Überschriftenstruktur",
"impact": "niedrig",
"status": "ok",
"evidence": "4 H1 und 13 Überschrift(en) im HTML-Sample."
},
{
"id": "wcag_mobile_reflow",
"ok": true,
"wcag": "WCAG 1.4.10 Reflow",
"title": "Mobile Viewport-Basis",
"impact": "niedrig",
"status": "ok",
"evidence": "Viewport-Meta-Tag gefunden."
}
],
"summary": "1 WCAG-/EAA-Prüfpunkt(e) auffällig, davon 1 mit hoher Auswirkung.",
"standard": "WCAG 2.2 orientierte Basisprüfung",
"available": true,
"issue_count": 1,
"high_impact_count": 1
}
},
"domain_history": {
"summary": "Domainhistorie konnte per RDAP nicht zuverlässig abgerufen werden.",
"findings": [],
"available": false,
"risk_level": "unknown"
},
"data_entry_analysis": {
"forms": [
{
"method": "GET",
"purpose": "Adresse",
"data_types": [
{
"id": "address",
"label": "Adresse"
},
{
"id": "search",
"label": "Suche"
}
],
"field_count": 6
},
{
"method": "GET",
"purpose": "Adresse",
"data_types": [
{
"id": "address",
"label": "Adresse"
},
{
"id": "search",
"label": "Suche"
}
],
"field_count": 5
},
{
"method": "GET",
"purpose": "Adresse",
"data_types": [
{
"id": "address",
"label": "Adresse"
},
{
"id": "search",
"label": "Suche"
}
],
"field_count": 4
},
{
"url": "https://actors.bbfc-cloud.de/actor_profile_search/new",
"path": "/actor_profile_search/new",
"method": "UNBEKANNT",
"source": "crawl",
"purpose": "Formular",
"data_types": [],
"field_count": 0
},
{
"purpose": "Formular",
"field_count": 0,
"source": "crawl",
"path": "/actor_profile_search/new",
"url": "https://actors.bbfc-cloud.de/actor_profile_search/new"
}
],
"score": 84,
"summary": "Crawl fand 6 Formular(e) auf 1 geprüften Seite(n), u. a. /actor_profile_search/new.",
"findings": [],
"form_count": 6,
"risk_level": "medium",
"field_count": 15,
"asks_for_data": true,
"crawl_form_pages": [
{
"url": "https://actors.bbfc-cloud.de/actor_profile_search/new",
"path": "/actor_profile_search/new",
"category": "unterseite",
"form_count": 6
}
],
"payment_providers": [],
"detected_data_types": [
{
"id": "address",
"count": 3,
"label": "Adresse"
},
{
"id": "newsletter",
"count": 1,
"label": "Newsletter"
},
{
"id": "contact",
"count": 1,
"label": "Kontaktformular"
}
],
"crawl_form_page_count": 1,
"privacy_context_found": true,
"operator_context_found": true
},
"pii_exposure_analysis": {
"color": "red",
"score": 46,
"checks": [
{
"id": "current_url",
"ok": true,
"count": 0,
"label": "Aktuelle URL",
"detail": "Keine sensiblen Query-Parameter erkannt."
},
{
"id": "link_queries",
"ok": true,
"count": 0,
"label": "Link-Parameter",
"detail": "Keine sensiblen Link-Querys erkannt."
},
{
"id": "get_forms",
"ok": false,
"count": 3,
"label": "GET-Formulare",
"detail": "3 Formular(e) prüfen."
},
{
"id": "external_forms",
"ok": false,
"count": 3,
"label": "Externe Formularziele",
"detail": "3 externe Formularziel(e)."
},
{
"id": "tracking_context",
"ok": true,
"count": 0,
"label": "Tracking neben Dateneingabe",
"detail": "Keine Kombination aus Dateneingabe und datenschutzrelevanten Drittanbietern erkannt."
}
],
"status": "kritisch",
"summary": "2 PII-/Datenleck-Hinweis(e) aus URL-, Formular- und Browserkontext.",
"findings": [
{
"id": "pii_sensitive_get_form",
"forms": [
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
}
],
"title": "Formular mit personenbezogenen Feldern nutzt GET",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "pii_external_form_action",
"forms": [
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
}
],
"title": "Formular mit personenbezogenen Feldern sendet an externe Domain",
"public": true,
"category": "privacy",
"severity": "warning"
}
],
"link_hits": [],
"finding_count": 2,
"current_url_hits": [],
"tracking_context": false,
"sensitive_get_forms": [
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
},
{
"fields": [
"address",
"search"
]
}
]
},
"scan_history_analysis": {
"available": false,
"summary": "Noch kein früherer gespeicherter Scan für diese Domain vorhanden.",
"total_scan_count": 1,
"previous_scan_count": 0,
"history": [
{
"scan_id": "ac00e4f8-55b4-4caf-9f51-a52b5a189ad3",
"created_at": "2026-06-19 19:52:03.522659+02",
"score": 63,
"verdict": "auffällig",
"finding_count": 18,
"integrity_root_hash": "caf07a20b58ded98a6e5770d200d480ff6ae8fc9e569f034845dfd1e09698b16",
"integrity_available_hash_count": 9,
"current": true
}
],
"new_findings": [],
"resolved_findings": [],
"technical_changes": {
"available": false,
"summary": "Noch kein früherer Scan für technische Änderungen vorhanden."
}
},
"benchmark_analysis": {
"host": "actors.bbfc-cloud.de",
"rank": 1,
"score": 63,
"status": "über_durchschnitt",
"summary": "actors.bbfc-cloud.de liegt mit 63 Punkten über dem gespeicherten Durchschnitt von 52.9.",
"available": true,
"peer_count": 7154,
"percentile": 0,
"query_mode": "php_ttl_cache_refresh",
"distribution": {
"0_39": 1108,
"40_59": 2920,
"60_79": 3109,
"80_100": 17
},
"median_score": 58,
"average_score": 52.9,
"comparison_basis": "Neuester gespeicherter SaferPage-Scan je Domain; überwiegend deutschsprachige gespeicherte Checks.",
"same_score_count": 0,
"better_than_count": 0,
"qualified_peer_count": 6902,
"zero_score_count": 252,
"top_quartile_score": 65,
"top_decile_score": 68,
"qualified_average_score": 54.8,
"qualified_median_score": 59,
"qualified_top_quartile_score": 65,
"qualified_top_decile_score": 68,
"thresholds": [
{
"id": "critical",
"label": "Kritisch",
"range": "0-39",
"met": false
},
{
"id": "basic",
"label": "Basis stabilisieren",
"range": "40-59",
"met": false
},
{
"id": "managed",
"label": "Gesteuert",
"range": "60-79",
"met": true
},
{
"id": "strong",
"label": "Stark",
"range": "80-100",
"met": false
}
],
"risk_tier": "gesteuert",
"target_score": 80,
"aspirational_target_score": 80,
"gap_to_target": 17,
"gap_to_top_quartile": 2,
"gap_to_strong": 17,
"cache_ttl_seconds": 300
},
"audit_receipt": {
"url": "https://actors.bbfc-cloud.de/",
"host": "actors.bbfc-cloud.de",
"status": "verfügbar",
"bot_url": "https://saferpage.de/bot",
"summary": "Prüfbeleg für actors.bbfc-cloud.de: kontrollierter HTTP-/Browser-Kurzcheck mit 24 Request(s), 4 Consent-Zustand/Zuständen und 7 Artefakt(en).",
"renderer": "playwright-chromium",
"artifacts": [
{
"label": "Öffentlicher Kurzreport",
"detail": "https://saferpage.de/actors.bbfc-cloud.de",
"status": "verfügbar"
},
{
"label": "JSON-Export",
"detail": "Maschinenlesbarer Report mit Modulen, Nachweisen und Tabellen.",
"status": "verfügbar"
},
{
"label": "CSV-Export",
"detail": "Tabellarische Prüfzeilen für Betreiber, Datenschutz und Technik.",
"status": "verfügbar"
},
{
"label": "160x150 Seitenvorschau",
"detail": "/cache/screenshots/actors.bbfc-cloud.de-160x150-422459eaf744db71b1.png",
"status": "verfügbar"
},
{
"label": "Cookie-Erklärung",
"detail": "2 Cookie-/Storage-Eintrag/Einträge.",
"status": "unauffällig"
},
{
"label": "Empfänger-/Anbieterinventar",
"detail": "3 Anbieterzeile(n), 2 AVV-/Rollenprüfung(en).",
"status": "unauffällig"
},
{
"label": "Barrierefreiheitserklärung-Entwurf",
"detail": "1 bekannte Barrierefreiheits-Punkt(e).",
"status": "Nicht vollständig konform im automatischen Basischeck"
}
],
"available": true,
"final_url": "https://www.bbfc-cloud.de/",
"checked_at": "2026-06-19T17:52:02+00:00",
"share_text": "SaferPage Prüfbeleg actors.bbfc-cloud.de: 24 Browser-Request(s), 3 Drittanbieter, 2 Cookie-/Storage-Einträge, geprüft am 2026-06-19T17:52:02.",
"user_agent": "SaferPageCrawler/0.3 (+https://saferpage.de/bot; schedules passive DACH website checks; report examples: https://saferpage.de/tests; kostenloser Report: <a href=\"https://saferpage.de/actors.bbfc-cloud.de\">https://saferpage.de/actors.bbfc-cloud.de</a>)",
"limitations": [
"Öffentliche Nachweise enthalten keine Cookie-Werte und keine vollständigen Request-URLs.",
"Der Scan ist ein passiver Browser- und HTTP-Kurzcheck; rechtliche Bewertung bleibt Betreiberaufgabe.",
"Dynamische Inhalte können sich je nach Region, Zeit, Gerät und Consent-Auswahl ändern."
],
"scan_context": "crawler",
"coverage_items": [
{
"label": "HTTP/DNS/TLS",
"value": "HTTP 200 · DNS ok · TLS ok"
},
{
"label": "Browserlauf",
"value": "24 Request(s), 3 Drittanbieter-Domain(s), 1 Browser-Cookie(s)."
},
{
"label": "Consent-Zustände",
"value": "4 Zustand/Zustände: Default, Ablehnen, Akzeptieren und GPC soweit verfügbar."
},
{
"label": "Seitenabdeckung",
"value": "1 priorisierte Unterseite(n) im Nachweispack."
},
{
"label": "Drittanbieter-Auszug",
"value": "3 Anbieterzeile(n) im öffentlichen Nachweis."
},
{
"label": "Cookie-Auszug",
"value": "2 Cookie-Zeile(n) im öffentlichen Nachweis."
}
],
"confidence_score": 97,
"browser_final_url": "https://www.bbfc-cloud.de/"
},
"evidence_integrity_manifest": {
"host": "actors.bbfc-cloud.de",
"status": "verfügbar",
"summary": "Integritätsmanifest für actors.bbfc-cloud.de: 9/9 Nachweisbereich(e) mit SHA-256-Hash dokumentiert.",
"sections": [
{
"id": "audit_receipt",
"hash": "c25f6903ae9e08dba7e0687bd3870a18a0912ca946b64578c4e2c34ba2768aac",
"count": 18,
"label": "Prüfbeleg",
"detail": "Kanonischer JSON-Hash des kompakten Prüfbelegs.",
"status": "verfügbar"
},
{
"id": "protocol",
"hash": "30e81f07074457529e9fc73f2c07bf91263a976a1994ad01ba66371477df41aa",
"count": 15,
"label": "Scan-Protokoll",
"detail": "URL, Endziel, User-Agent, Zeitstempel, HTTP/DNS/TLS und Renderer.",
"status": "verfügbar"
},
{
"id": "checkpoints",
"hash": "214443bf3c21a9c717e0731d976a9d8b7599b03e5e4e0b223f79a5f53f959dd0",
"count": 6,
"label": "Prüfschritte",
"detail": "Kanonischer JSON-Hash der dokumentierten Prüfstationen.",
"status": "verfügbar"
},
{
"id": "consent_states",
"hash": "6595eaa3472595dbc079dfc74dad7db1e52814bcea9426dce48873cf47a01f55",
"count": 4,
"label": "Consent-Zustände",
"detail": "Default-, Ablehnen-, Akzeptieren- und GPC-Nachweise soweit verfügbar.",
"status": "verfügbar"
},
{
"id": "third_party_evidence",
"hash": "e880e91cee628a67b1dcd8d68b976a6093ea2b9a202c862fb2a6f050a78aac3d",
"count": 3,
"label": "Drittanbieter-Auszug",
"detail": "Sanitisierte Anbieter-, Kategorie-, Transfer- und Request-Zählwerte.",
"status": "verfügbar"
},
{
"id": "cookie_evidence",
"hash": "e818caf55f80de73800308a5d9d825ef902f68502abbcf44cb6c26f9428d52dc",
"count": 2,
"label": "Cookie-Auszug",
"detail": "Sanitisierte Cookie-Metadaten ohne Cookie-Werte.",
"status": "verfügbar"
},
{
"id": "request_samples",
"hash": "b6e0aaf0c9a7e6bbd7d9d45c040acaace3bb0baf26de70ec1c0a654b769adf33",
"count": 10,
"label": "Request-Samples",
"detail": "Sanitisierte Drittanbieter-Samples ohne vollständige Request-URLs.",
"status": "verfügbar"
},
{
"id": "checked_pages",
"hash": "902e8d30f642eee69bddee29aa8154ce6ba344bb5bfe9633261a7711ccb43277",
"count": 1,
"label": "Geprüfte Unterseiten",
"detail": "Priorisierte Pfade aus Sitemap, Pflichtseiten und interner Linkstruktur.",
"status": "verfügbar"
},
{
"id": "screenshot_file",
"hash": "fa83729c94efe75005178d499c280b203c020776966140f589d760ca0ec1ed3d",
"count": 6982,
"label": "160x150 Seitenvorschau-Datei",
"detail": "/cache/screenshots/actors.bbfc-cloud.de-160x150-422459eaf744db71b1.png",
"status": "verfügbar"
}
],
"algorithm": "sha256",
"available": true,
"root_hash": "caf07a20b58ded98a6e5770d200d480ff6ae8fc9e569f034845dfd1e09698b16",
"checked_at": "2026-06-19T17:52:02+00:00",
"limitations": [
"Das Manifest schützt die im Report veröffentlichten/sanitisierten Nachweise, nicht verdeckte Cookie-Werte oder vollständige Request-URLs.",
"Ohne externe qualifizierte Zeitstempelung beweist der Hash Integrität des exportierten Artefakts, aber keine amtliche Zustellung."
],
"section_count": 9,
"canonicalization": "JSON UTF-8, sort_keys=true, kompakte Separatoren; Screenshot als rohe Datei-Bytes.",
"available_hash_count": 9
},
"audit_evidence_pack": {
"status": "verfügbar",
"summary": "Nachweisprotokoll mit 24 Browser-Request(s), 2 Cookie-Nachweis(en), 3 Drittanbieter-Auszug/auszügen und 4 Consent-Zustand/Zuständen.",
"protocol": {
"host": "actors.bbfc-cloud.de",
"dns_ok": true,
"tls_ok": true,
"bot_url": "https://saferpage.de/bot",
"renderer": "playwright-chromium",
"final_url": "https://www.bbfc-cloud.de/",
"input_url": "https://actors.bbfc-cloud.de/",
"checked_at": "2026-06-19T17:52:02+00:00",
"user_agent": "SaferPageCrawler/0.3 (+https://saferpage.de/bot; schedules passive DACH website checks; report examples: https://saferpage.de/tests; kostenloser Report: <a href=\"https://saferpage.de/actors.bbfc-cloud.de\">https://saferpage.de/actors.bbfc-cloud.de</a>)",
"http_status": 200,
"scan_context": "crawler",
"screenshot_url": "/cache/screenshots/actors.bbfc-cloud.de-160x150-422459eaf744db71b1.png",
"googlebot_status": 200,
"browser_final_url": "https://www.bbfc-cloud.de/",
"dns_address_count": 4
},
"checkpoints": [
{
"label": "DNS",
"detail": "4 Adresse(n) aufgelöst.",
"status": "ok"
},
{
"label": "TLS/HTTPS",
"detail": "TLSv1.3",
"status": "ok"
},
{
"label": "HTTP-Abruf",
"detail": "Status 200, Endziel https://www.bbfc-cloud.de/.",
"status": "ok"
},
{
"label": "Browserlauf",
"detail": "24 Request(s), 3 Drittanbieter-Domain(s).",
"status": "ok"
},
{
"label": "Consent-Zustände",
"detail": "Default, Ablehnen, Akzeptieren und GPC werden soweit möglich gegenübergestellt.",
"status": "unauffällig"
},
{
"label": "Exports",
"detail": "PDF/Druck, JSON und CSV enthalten die wesentlichen Prüfnachweise.",
"status": "verfügbar"
}
],
"limitations": [
"Öffentliche Nachweise enthalten keine Cookie-Werte und keine vollständigen Request-URLs.",
"Der Scan ist ein passiver Browser- und HTTP-Kurzcheck; rechtliche Bewertung bleibt Betreiberaufgabe.",
"Dynamische Inhalte können sich je nach Region, Zeit, Gerät und Consent-Auswahl ändern."
],
"checked_pages": [
{
"path": "/actor_profile_search/new",
"source": "homepage_link",
"status": 0,
"category": "unterseite"
}
],
"cookie_evidence": [
{
"name": "_prestage_session",
"domain": "actors.bbfc-cloud.de",
"secure": true,
"category": "Notwendig",
"provider": "actors.bbfc-cloud.de",
"tracking": false,
"retention": "Session",
"same_site": "True",
"pre_consent": true
},
{
"name": "_prestage_session",
"domain": "bbfc-cloud.de",
"secure": true,
"category": "Notwendig",
"provider": "bbfc-cloud.de",
"tracking": false,
"retention": "Session",
"same_site": "Lax",
"pre_consent": true
}
],
"browser_evidence": {
"gpc_enabled": true,
"request_count": 24,
"storage_total": 0,
"accept_clicked": false,
"reject_clicked": false,
"browser_cookie_count": 1,
"contacted_domain_count": 4,
"third_party_domain_count": 3,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
"storage_evidence": {
"tracking_key_hints": [],
"local_storage_total": 0,
"session_storage_total": 0
},
"third_party_evidence": [
{
"host": "assets.bbfc-cloud.de",
"category": "Sonstige",
"provider": "assets.bbfc-cloud.de",
"transfer": "EU/EWR",
"risk_level": "niedrig",
"request_count": 15,
"resource_types": [
"image",
"font",
"script",
"stylesheet"
],
"privacy_relevant": false
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"category": "Sonstige",
"provider": "d98aqn5zv9lac.cloudfront.net",
"transfer": "Jurisdiktion unklar",
"risk_level": "niedrig",
"request_count": 7,
"resource_types": [
"image"
],
"privacy_relevant": false
},
{
"host": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"category": "Sonstige",
"provider": "bbfc-cloud-public.s3.eu-west-1.amazonaws.com",
"transfer": "Jurisdiktion unklar",
"risk_level": "niedrig",
"request_count": 1,
"resource_types": [
"media"
],
"privacy_relevant": false
}
],
"external_script_count": 3,
"consent_state_evidence": [
{
"label": "Erstaufruf",
"cookie_count": 0,
"domain_count": 3,
"request_count": 23,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"label": "Nach Ablehnen neu",
"cookie_count": 0,
"domain_count": 0,
"request_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"label": "Nach Akzeptieren neu",
"cookie_count": 0,
"domain_count": 0,
"request_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"label": "GPC-Aufruf",
"cookie_count": 0,
"domain_count": 3,
"request_count": 23,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
}
],
"request_sample_evidence": [
{
"host": "assets.bbfc-cloud.de",
"query_keys": [],
"resource_type": "stylesheet",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"query_keys": [],
"resource_type": "stylesheet",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"query_keys": [],
"resource_type": "script",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"query_keys": [],
"resource_type": "stylesheet",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"query_keys": [],
"resource_type": "script",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"query_keys": [],
"resource_type": "script",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"query_keys": [],
"resource_type": "image",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "assets.bbfc-cloud.de",
"query_keys": [],
"resource_type": "image",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"query_keys": [],
"resource_type": "image",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "d98aqn5zv9lac.cloudfront.net",
"query_keys": [],
"resource_type": "image",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
}
]
},
"consent_visual_salience_evidence": {
"schema": "https://saferpage.de/schemas/consent-visual-salience-evidence.v1",
"status": "measured_dom_viewport_signal",
"available": true,
"evidence_level": "dom_viewport_signal_only",
"summary": "Der erste Headless-Chromium-Viewport liefert sichtbare Consent-Control-Signale mit Text, Position, Groesse und typografischen Hinweisen.",
"sample_status": "visible_controls_without_classified_samples",
"classified_sample_count": 0,
"accept_control_count": 0,
"reject_control_count": 0,
"settings_control_count": 0,
"visible_control_count": 19,
"accept_max_area": 0,
"reject_max_area": 0,
"reject_prominence_ratio": "nicht messbar",
"samples": [],
"sample_boundary": "Samples enthalten nur klassifizierte Accept-/Reject-/Settings-Controls. Weitere sichtbare Consent-Controls bleiben als Zaehler erhalten, werden aber ohne Klassifizierung nicht als Ablehnen-, Akzeptieren- oder Einstellungsprobe behauptet.",
"claim_boundary": "Consent-Visual-Salienz ist ein DOM-/Viewport-Signal aus dem ersten Browserlauf. Sie ist keine Rechtsbewertung, kein Dark-Pattern-Endurteil und kein Nachweis fuer spaetere Consent-Zustaende, Scrollbereiche, Loginbereiche oder manuelle Betreiberkontexte."
}
}
Geprüfte Domain-Wurzel: https://actors.bbfc-cloud.de/