Live-Domain-Report
Scan-ID: c5a1bd57-1d64-4881-b0b6-8dfe7f3a60a0 · 2026-06-19 08:52:04.466762+02
Geprüfte Domain-Wurzel: https://fotograf.de/
Kurz-URL: saferpage.de/fotograf.de
Datenschutz-Score
18/100 Kritische HinweiseIn 20 Sekunden lesen
Nutzen Sie diese Kurzfassung zuerst als Evidence-Checkliste: belegte Signale, Claim-Grenzen und Links stehen im Vordergrund; Betreiberkontext ohne Scan-Beleg wird nur verlinkt.
Score-Erklärung
Diese Erklärung macht die Gesamtaussage lesbar: Score-Treiber, entlastende Signale, Gate-/Grenzsignale und manuelle Prüfpunkte bleiben getrennt. Der Score ist kein Verbot, kein Gütesiegel und keine Rechtsfreigabe. Score-Methodik öffnen
2 Cookie(s) vor Einwilligung im gespeicherten Lauf.
1 datenschutzrelevante Drittanbieter-Domain(s) aus Browserkontakten.
9 wichtige Security-Header fehlen oder sind nicht belegt.
PHP-Version ist nicht mehr upstream unterstuetzt: –
Browser-Nachweis: 122 Request(s), 9 Drittanbieter-Domain(s), davon 1 datenschutzrelevant, 3 Browser-Cookie(s), Transfer-Prüfbedarf: 3, Referrer-/URL-Leaks: 3,
0 Tracking-Script(s) im gespeicherten Lauf.
Impressum-Link wurde im passiven Sample belegt.
Datenschutz-Hinweis wurde im passiven Sample belegt.
Performance-Basiswert liegt bei 94/100.
Score unter 50: hoher Betreiber-Pruefbedarf, aber kein Verbot und kein Seriositaetsurteil.
4 manuelle Review-Ausloeser aus der Scope-Grenze.
4 nicht automatisch gepruefte Bereiche, etwa Login, Checkout, Vertrags- oder Rechtskontext.
Korrektur melden: Wenn Score-Treiber durch Consent-Wall, Paywall, veraltete Inhalte oder falsch erkannte Betreiberinformationen verzerrt sind, melden Sie Domain, Report-URL, Scan-ID und kurze Begruendung ueber Kontakt.
Prüfumfang & Grenzen
Prüfumfang und Grenzen des passiven SaferPage-Kurzchecks: getestet, nicht getestet, manuell zu prüfen und erneut zu scannen.
Passiver HTTP-/Browser-Sample: 122 Browser-Request(s), 1 datenschutzrelevante Drittanbieter-Domain(s).
Cookies und Consent-Startzustand: 2 Cookie(s) vor Einwilligung im gespeicherten Lauf.
Öffentlich erreichbare Test-URLs: 4 direkt geprüfte Test-URL(s) im Crawl-/Coverage-Abschnitt.
Formular-Evidenz aus öffentlichem Crawl: Keine Formularabgabe im passiven Sample belegt.
Claim-Grenze: Der Prüfumfang beschreibt den gespeicherten passiven Kurzcheck. Er ersetzt keine Rechtsberatung, keine Betreiberfreigabe und keinen Deep-Scan hinter Login, Paywall oder Interaktion.
Zuletzt geprüfte Seiten
Der Kurzreport zeigt hier die priorisierten Unterseiten aus dem letzten Crawl mit direktem Link zur geprüften Ziel-URL. Die Screenshot-Vorschau oben ist eine kleine 160x150-Evidence zum geprüften Seitenzustand; die Liste darunter macht sichtbar, ob Datenschutz-, Impressum-, Formular- oder andere wichtige Seiten im Test enthalten waren.
4 abgerufene Unterseite(n) · 12 zusätzlich entdeckte interne Linkziele.
Vollständiges Seiteninventar öffnen · Agentur-DeepScan öffnen
Audit-Ausgabe
Dieser Bericht ist für die Browser-Funktion „Drucken“ beziehungsweise „Als PDF speichern“ optimiert. Rohdaten und auditfähige Nachweise bleiben zusätzlich über JSON, CSV, Excel-Tabellen und ein ZIP-Nachweispaket mit getrennten Cookie-, Drittanbieter-, Consent-, Request- und Aufgaben-Tabellen exportierbar.
Link-only
Dieser Report zeigt Scan-Fakten zur geprüften Website. Umsetzungsschritte, Hintergrundseiten, Checklisten, Code und allgemeine Empfehlungen stehen auf getrennten Seiten; im Report erscheint nur der Link.
–
Guide-, Checklisten- und Umsetzungstexte stehen auf separaten Seiten; hier bleiben Evidence und Link.122 Request(s), 9 Drittanbieter-Domain(s), davon 1 datenschutzrelevant, 3 Browser-Cookie(s), Transfer-Prüfbedarf: 3, Referrer-/URL-Leaks: 3, Fingerprinting-/Replay-Hinweise: 1.
Guide-, Checklisten- und Umsetzungstexte stehen auf separaten Seiten; hier bleiben Evidence und Link.Consent ist teilweise erkennbar; einzelne Punkte bleiben Betreiberkontext.
Guide-, Checklisten- und Umsetzungstexte stehen auf separaten Seiten; hier bleiben Evidence und Link.Betreiber-Fazit
Die Kurzfassung zeigt technische Signale aus dem passiven Lauf. Betreiberkontext ohne Scan-Beleg wird nur als Hintergrund-Link angeboten.
Prüfprofil
Prüfprofil Deutschland -> DACH: Allgemeine Website, Zielgruppe Gemischte Zielgruppe. 4 Schwerpunkt(e) für Betreiber priorisiert.
Das Profil priorisiert technische Prüfpunkte für Betreiber; es ersetzt keine rechtliche Einzelfallprüfung.
Website-Typ: Allgemeine Website · Betreiber: Deutschland · Zielregion: DACH
Prüfmodule
122 Request(s), 9 Drittanbieter-Domain(s), davon 1 datenschutzrelevant, 3 Browser-Cookie(s), Transfer-Prüfbedarf: 3, Referrer-/URL-Leaks: 3, Fingerprinting-/Replay-Hinweise: 1.
Details und Umsetzungshinweise stehen auf separaten Seiten; sichtbar bleiben Modulscore, Evidence und Link.Mehr erfahren3 Drittanbieter-Domain(s) mit Referrer-/URL-Leak-Prüfbedarf, 2 sensible Query-Kontexte.
Details und Umsetzungshinweise stehen auf separaten Seiten; sichtbar bleiben Modulscore, Evidence und Link.Mehr erfahren1 Infrastruktur-Hinweis(e), Security-Header: 0/9 vorhanden, 9 fehlen, externe Skript-Hosts: 1.
Details und Umsetzungshinweise stehen auf separaten Seiten; sichtbar bleiben Modulscore, Evidence und Link.Mehr erfahrenGoogle-Tags: ja, 3 Google-nahe Domain(s), Consent-Default: ja, Analytics: nein, Werbung: nein, Fonts: ja.
Details und Umsetzungshinweise stehen auf separaten Seiten; sichtbar bleiben Modulscore, Evidence und Link.Mehr erfahren3 SEO-Spam-Hinweis(e), 0 Cloaking-Hinweis(e).
Details und Umsetzungshinweise stehen auf separaten Seiten; sichtbar bleiben Modulscore, Evidence und Link.Mehr erfahrenScan-Evidence in diesem Modul vorhanden; Betreiberkontext steht auf einer separaten Seite.
Details und Umsetzungshinweise stehen auf separaten Seiten; sichtbar bleiben Modulscore, Evidence und Link.Mehr erfahren3 Cookie(s), 0 Tracking-/Werbe-Cookie(s), 2 Drittanbieter-Cookie(s), 1 langlebig, 0 sehr lang.
Details und Umsetzungshinweise stehen auf separaten Seiten; sichtbar bleiben Modulscore, Evidence und Link.Mehr erfahrenDie Seite kann Name/personenbezogene Daten, Newsletter, Zahlung abfragen.
Details und Umsetzungshinweise stehen auf separaten Seiten; sichtbar bleiben Modulscore, Evidence und Link.Mehr erfahrenLink-only Detailmodule
Dieser Report bleibt bei Scan-Fakten zur geprüften Website. Nachweise, Badge-Code, Benchmark, Monitoring, Arbeitspfade und Hintergrundseiten öffnen auf eigenen Seiten; im Report stehen nur feste Links, keine Hintergrundinhalte.
Monitoring
Noch kein Vergleich
Noch kein früherer gespeicherter Scan für diese Domain vorhanden.
Betreiber-Risiko
Hoher Betreiber-Handlungsbedarf
Abgeleitet aus dem Datenschutz-Webseiten-Report: Datenschutz, TDDDG/ePrivacy, BSI-Sicherheit, Google-Qualität und Nutzbarkeit werden nach passiven Befunden priorisiert.
Domainhistorie
RDAP liefert kein klares Registrierungsdatum.
Datenschutz zuerst
Cookies beim ersten Aufruf: 0 · Tracking-Skripte: 0 · Datenschutzerklärung: ja · Impressum: ja · Ablehnen-Option: ja
Dateneingabe & Zahlung
Im passiven Sample wurde keine Formular-Evidence gespeichert. Datenschutzkontext: ja · Details auf der verlinkten Seite
PII & Datenlecks
2 PII-/Datenleck-Hinweis(e) aus URL-, Formular- und Browserkontext. Score: 78 · Hinweise: 2
Kurzantwort
Der Check bleibt passiv und formuliert die wichtigsten Punkte als Betreiberhinweise. Technische Details bleiben nachvollziehbar im JSON erhalten.
Browser-Sicht
Requests: 122 · kontaktierte Domains: 10 · Drittanbieter: 9 · Browser-Cookies: 3 · Storage: 1 (1 Tracking-Hinweis(e)) · Banner: Akzeptieren 0 / Ablehnen 1 / Einstellungen 2 · Ablehnen/Akzeptieren: 0 · Reject-Test: geklickt, neue Cookies 1, neue Tracking-Kontakte 0 · Accept-Test: nicht ausgeführt, neue Cookies 0, neue Tracking-Kontakte 0 · TCF-String: nein, Purposes 0, Vendors 0 · GPC: aktiv, Datenschutz-Domains 1, Drittanbieter-Cookies 2 · Viewport-Signale: Datenschutz 0 / Impressum 0 / Kontakt 0 / Cookie 1 · CMP: ja · Browser: playwright-chromium
Consent-Zustände
Consent-State-Evidence: 4 Zustände verglichen, 1 hoch auffällig, 2 mittel auffällig. Score: 50
Consent-Journey
Consent-Journey: 0 neue Datenschutz-Domain(s) nach Ablehnen, 0 nach Akzeptieren, 1 im GPC-Aufruf. Score: 92 · Ablehnen neu: 0 · Akzeptieren neu: 0 · GPC: 1
Drittanbieter-Kontakte
9 Drittanbieter-Domain(s) beim ersten Browseraufruf, davon 1 datenschutzrelevant. Score: 59 · Requests: 23 · datenschutzrelevant: 1
Betreiber-Verzeichnis
9 Empfänger-/Anbieter-Eintrag/Einträge aus Browserkontakten und Cookie-Inventar, 1 datenschutzrelevant, 7 mit AVV-/Rollenprüfung. Score: 65 · hoher Prüfbedarf: 1 · AVV/Rolle prüfen: 7
Aus diesem Rohfeld wird im Report keine zusätzliche Scan-Feststellung abgeleitet; Betreiberkontext und Umsetzungshinweise stehen auf separaten Seiten.
Transfer-Risiko
9 Drittanbieter für Transfer-/Jurisdiktionsprüfung, 3 mit hohem Prüfbedarf, 6 unklar. Score: 31 · hoher Prüfbedarf: 3 · unklar: 6
Externe Inhalte
0 externe Embed-/Widget-Dienst(e), 0 davon im ersten Browseraufruf geladen. Score: 100 · vorab geladen: 0 · Captcha: 0
Referrer & URL-Leaks
3 Drittanbieter-Domain(s) mit Referrer-/URL-Leak-Prüfbedarf, 2 sensible Query-Kontexte. Score: 20 · Domains: 3 · sensible Kontexte: 2
Tracking-Pixel & Beacons
2 Pixel-/Bildtracking-Hinweis(e), 0 Beacon-/Telemetry-Hinweis(e), 0 Link-Ping(s). Score: 80 · Pixel: 2 · Beacons/Telemetry: 0 · Link-Pings: 0
Fingerprinting & Session-Replay
1 Fingerprinting-/Session-Replay-Hinweis(e) aus dem Browserlauf. Score: 90 · Hinweise: 1
Seitenabdeckung
30 interne Linkziele erkannt (112 aus Sitemap), 4 priorisierte Unterseite(n) zusätzlich abgerufen. Score: 95 · wichtige Seiten: cookies, datenschutz, impressum · Sitemap-URLs: 112 · gelesene Sitemaps: 8 · Unterseiten mit Tracking: 0 · Formularlücken: 0 · Datenschutzerklärung: 100 Punkte, fehlende Bausteine 0 · Aktualität: 2026-03-01 · Lesbarkeit: 10.9 Wörter/Satz · Anbieter-Abgleich: 1/2 erwähnt
Google Consent Mode
Google-Consent-Mode-Signale wurden aus GTM/Analytics/Ads-Tags, passenden Browserkontakten und Tracking-IDs abgeleitet; reine Google-Service-Kontakte werden separat gezählt. Score: 100
Consent Mode
Consent-Mode-Implementierung 80/100; 5/6 Schritt(e) bereit, 1 offen. Google-Tags erkannt.
Der Report zeigt nur Scan-Status, Zähler und den Link zur Detailseite. Consent-Anleitung, Code und Umsetzungsschritte werden hier nicht gerendert.
Consent-Audit
Consent ist teilweise erkennbar; einzelne Punkte bleiben Betreiberkontext. Score: 61 · Cookies vor Einwilligung: 2 · Tracking-Cookies: 0 · Browser-Ablehnen: 1 · Ablehnen/Akzeptieren: 0 · Reject geklickt: ja · neue Cookies nach Ablehnen: 1 · Accept geklickt: nein · neue Cookies nach Akzeptieren: 0 · neue Tracking-Kontakte nach Akzeptieren: 0 · TCF-String: nein · TCF Purposes: 0 · TCF Vendors: 0 · GPC Datenschutz-Domains: 1 · GPC Drittanbieter-Cookies: 2 · Storage-Hinweise: 1 · CMP: ja · datenschutzrelevante Drittanbieter: 0
Banner-UX
Consent-Banner-UX: 2 auffällige Prüfpunkt(e), davon 1 hoch. Muster: Ablehnen technisch nicht wirksam. Score: 74 · Akzeptieren: 0 · Ablehnen: 1 · Einstellungen: 2 · Dark-Pattern-Hinweise: 1
Automatisch aus sichtbaren Banner-Controls und Browser-Interaktionen abgeleitet; visuelle Details und Rechtmäßigkeit fachlich prüfen.
Welche Consent-Controls waren im ersten Viewport sichtbar? Status: measured_dom_viewport_signal · Akzeptieren: 0 · Ablehnen: 1 · Einstellungen: 2 · sichtbare Controls: 16 · Ablehnen/Akzeptieren: nicht messbar
Consent-Visual-Salienz ist ein DOM-/Viewport-Signal aus dem ersten Browserlauf. Sie ist keine Rechtsbewertung, kein Dark-Pattern-Endurteil und kein Nachweis fuer spaetere Consent-Zustaende, Scrollbereiche, Loginbereiche oder manuelle Betreiberkontexte.
TCF-Decoder
TCF-Decoder: 0 Zweck(e) mit Consent/LI-Signal, 0 Vendor-Consent(s), 0 Vendor-LI-Signal(e). Score: 100 · TC-String: nein · Purposes Consent: 0 · Purposes LI: 0 · Vendor Consent: 0 · Vendor LI: 0
Quellenmatrix
Quellen und Betreiber-Background stehen auf separaten Seiten.
Dieser Report zeigt dazu nur Zähler und Link; Quellenkommentare sind kein Befund zur geprüften Website.
Quellen: 10 · offizielle Links: 6
DSGVO & TDDDG
Der passive Scan stellt keine Rechtsgrundlage fest.
Er zählt nur beobachtete Cookie-, Storage-, Drittanbieter-, Formular- und Consent-Signale. Die fachliche Rechtsgrundlagenprüfung bleibt Sache des Betreibers und ist als Guide verlinkt.
Einwilligungsbezug: 8 · vor Consent auffällig: 2 · unklar/prüfen: 14 · Drittanbieter: 8 · Storage: 1
Detailprüfung, Rechtsbewertung und Umsetzungshinweise werden nicht im Report angezeigt.
Disclosure-Abgleich
Disclosure-Abgleich: 2 beobachtete Anbieter, 1 Anbieter ohne klare Erwähnung, 0 fehlende Policy-Bausteine.
Automatischer Textabgleich gegen technische Beobachtungen; Schreibweisen und dynamische Inhalte können manuelle Prüfung erfordern.
Score: 50 · Anbieter erkannt: 2 · Anbieter fehlen: 1 · Policy-Lücken: 0
Datenschutzhinweis
Disclosure-Signale aus dem Scan.
Der Report zeigt hier nur Zähler, beobachtete Signale und Links; redaktionelle Inhalte und Betreiber-Background stehen auf separaten Seiten.
Cookie-Inventar
3 Cookie(s) inventarisiert: 0 Tracking-/Werbe-Cookie(s), 2 Drittanbieter-Cookie(s), 1 langlebige Cookie(s), 0 sehr lange Laufzeit(en). Score: 76 · ohne Secure: 1 · ohne SameSite: 0 · persistent: 3 · langlebiges Tracking: 0 · sehr lang: 0 · Laufzeitrisiko: 1
Cookie-Disclosure
Cookie-Erklärung mit 4 Eintrag/Einträgen aus Cookies und Web Storage: 1 einwilligungspflichtig, 3 unklassifiziert. Score: 70 · einwilligungspflichtig: 1 · vor Consent: 1 · unklassifiziert: 3
Automatisch aus SaferPage-Cookie- und Web-Storage-Signalen abgeleitet; Kategorien und Zwecke vor Veröffentlichung fachlich prüfen.
Barrierefreiheit & Usability
26 Bild(er), 5 Formularfeld(er), 4 Button(s) im passiven HTML-Sample auf Basis-Barrierefreiheit geprüft. Score: 96
1 WCAG-/EAA-Prüfpunkt(e) auffällig, davon 0 mit hoher Auswirkung. Automatisch aus HTML-Signalen abgeleitet; ersetzt keine vollständige manuelle WCAG-/BITV-Prüfung.
BFSG/WCAG
Barrierefreiheits-Signale aus dem Scan. Status: Teilweise konform im automatischen Basischeck
Erklärungstexte und allgemeine Umsetzungshinweise stehen auf separaten Seiten.
DSGVO, Cookies & Tracking
Consent-Hinweis: nein · Datenschutz-Hinweis: ja · Cookies: 0
Seiteninhalt & Keywords
fotograf.de – Das Shopsystem für Fotograf:innen | Fotos online verkaufen
Entdecke Fotograf.de, das führende Shopsystem für Fotograf:innen: ✓ automatische Sortierung ✓ einfache Rechnungs- & Bestellabwicklung ✓ Jetzt kostenlos starten!
Technologie-Erkennung
Server: istio-envoy · Powered-by: PHP/8.1.33 · Generator: WordPress 6.3.1
CVE & Versionsrisiko
Versionsrisiko gefunden. Erkannte Versionen: 2 · Advisory-Treffer: 0 · Versionsregeln: 1
Impressum & Betreibertransparenz
Impressum: ja · Datenschutz: ja · Ablehnen-Option: ja
Performance / PageSpeed-Basis
Score: 94 · Antwortzeit: 1226 ms · HTML: 0 Bytes · Viewport: ja
Infrastruktur & TLS-Vertrauen
IPs: 3 · IPv6: nein · Zertifikat: 89 Tage · HSTS: nein · MX/SPF/DMARC: ja/ja/ja
Security-Header
0 von 9 wichtigen Security-Headern vorhanden, 0 korrekt bewertet. Keine Content-Security-Policy gefunden. Score: 34 · vorhanden: 0 · fehlen: 9 · prüfen: 0
Skript-Lieferkette
1 externe Skript(e) von 1 Host(s), 1 ohne SRI, 0 Tracking-/Tag-nahe Skript(e). Score: 96 · Hosts: 1 · ohne SRI: 1 · Tracking/Tags: 0
Zusammenhänge & Servernetzwerk
Ad-/Tracking-IDs: 1 · gleiche-IP-Nachbarn: 0 · bekannte eingehende Links: 0 · Servernetze: 3
SEO, Verhalten & Cloaking
SEO-Risiko: high · Browser-Verhalten: low · Cloaking: low
Weitere technische Signale
Öffentlich abrufbare Same-Origin-Signale aus robots.txt, Sitemaps, Meta-/X-Robots, KI-/Crawler-Policys, ads.txt/sellers.json, security.txt und Hreflang. Jede Zeile ist ein technischer Beleg, kein abschließendes Urteil.
{
"schema": "https://saferpage.de/schemas/public-scan-facts.v1",
"claim_boundary": "Öffentliche Rohdaten enthalten nur Scan-Fakten, Statuswerte, Evidence-Grenzen und feste Detail-/Hintergrund-Links. Betreiber-Hintergrund, Planungen, Checklisten, Code und allgemeine Empfehlungen stehen auf separaten Seiten.",
"current_evidence_policy": {
"schema": "https://saferpage.de/schemas/public-scan-current-evidence-policy.v1",
"status": "current_scan_fields_only",
"summary": "Der Fakten-JSON exportiert nur Felder, die im gespeicherten aktuellen Scan wirklich vorhanden sind. Fehlende neue Evidence wird nicht aus alten Testergebnisformaten nachgebaut.",
"guardrails": [
"Keine synthetischen Boundary-Fallbacks fuer alte Scans",
"Keine Nachbewertung alter Testergebnisse im Fakten-JSON",
"Keine Betreiber-Empfehlung im Report-JSON"
]
},
"host": "fotograf.de",
"normalized_url": "https://fotograf.de/",
"score": 18,
"verdict": {
"color": "red",
"label": "riskant",
"score": 18
},
"scan_id": "c5a1bd57-1d64-4881-b0b6-8dfe7f3a60a0",
"created_at": "2026-06-19 08:52:04.466762+02",
"evidence": {
"dns": {
"ok": true,
"addresses": [
"3.126.7.24",
"3.73.201.38",
"63.185.169.224"
],
"duration_ms": 12
},
"tls": {
"ok": true,
"cipher": "TLS_AES_128_GCM_SHA256",
"issuer": [
[
[
"countryName",
"US"
]
],
[
[
"organizationName",
"Amazon"
]
],
[
[
"commonName",
"Amazon RSA 2048 M03"
]
]
],
"subject": [
[
[
"commonName",
"fotograf.de"
]
]
],
"version": "TLSv1.3",
"not_after": "Sep 16 23:59:59 2026 GMT",
"hostname_matches": true,
"days_until_expiry": 89,
"subject_alt_names": [
"fotograf.de",
"*.fotograf.de"
],
"issuer_common_name": "Amazon RSA 2048 M03"
},
"http": {
"ok": true,
"status": 200,
"headers": {
"date": "Fri, 19 Jun 2026 06:51:34 GMT",
"link": "<https://www.fotograf.de/>; rel=shortlink",
"vary": "Accept-Encoding",
"server": "istio-envoy",
"connection": "close",
"content-type": "text/html; charset=UTF-8",
"x-powered-by": "PHP/8.1.33",
"transfer-encoding": "chunked",
"x-envoy-upstream-service-time": "469"
},
"body_size": 200000,
"final_url": "https://www.fotograf.de:443/",
"duration_ms": 1226
},
"scanner": {
"bot_url": "https://saferpage.de/bot",
"context": "crawler",
"user_agent": "SaferPageCrawler/0.3 (+https://saferpage.de/bot; schedules passive DACH website checks; report examples: https://saferpage.de/tests; kostenloser Report: <a href=\"https://saferpage.de/fotograf.de\">https://saferpage.de/fotograf.de</a>)",
"default_user_agent": "SaferPageBot/0.2 (+https://saferpage.de/bot; passive website safety check; no attack tests)"
},
"domain_records": {
"mx": true,
"caa": false,
"spf": true,
"dmarc": true,
"dnssec": false,
"records": {
"mx": [
"1 aspmx.l.google.com.",
"10 alt3.aspmx.l.google.com.",
"10 alt4.aspmx.l.google.com.",
"5 alt1.aspmx.l.google.com.",
"5 alt2.aspmx.l.google.com."
],
"ns": [
"ns-1241.awsdns-27.org.",
"ns-1831.awsdns-36.co.uk.",
"ns-467.awsdns-58.com.",
"ns-574.awsdns-07.net."
],
"caa": [],
"txt": [
"atlassian-domain-verification=2vT1+lyZ1RBb6P5C3L0R-zHCNvFmSAUgPraRzxOB2ggDnT29MsW1raAoYcx78aaR",
"cursor-domain-verification-rkx7zw=TZI2wpQAVB3DdLbPUvHXE1BNS",
"google-site-verification=RyxEeA2-8iF-dJ0w5WhbluwMEeKOcvBFnBXolYBkxyk",
"google-site-verification=YqGXZrVYxKRZIWuNd5WoGFbm9_oyQSTy41vutT_sxto",
"slack-domain-verification=Dd0VWSvlYu56VllErlH7vyIwDE5nnH51V0Aip8Jn",
"v=spf1 include:_spf.google.com include:amazonses.com include:3360279.spf08.hubspotemail.net include:spf.nl2go.com -all",
"wiz-domain-verification=75d9572d648ccecb73d9f8323db27d40c8d81b11e24e4f9d3a0be03a319f1e18",
"apple-domain-verification=sgCEVg3AMoF1TVbD"
],
"cname": [],
"dmarc": [
"v=DMARC1; p=none; rua=mailto:ffc338210a59.a@dmarcinput.com; ruf=mailto:ffc338210a59.f@dmarcinput.com; sp=none; fo=1"
],
"dnskey_present": false
},
"spf_includes": [
"_spf.google.com",
"amazonses.com",
"3360279.spf08.hubspotemail.net",
"spf.nl2go.com"
],
"verifications": [
"atlassian",
"google",
"apple"
]
},
"googlebot_http": {
"ok": true,
"status": 200,
"headers": {
"date": "Fri, 19 Jun 2026 06:51:34 GMT",
"link": "<https://www.fotograf.de/>; rel=shortlink",
"vary": "Accept-Encoding",
"server": "istio-envoy",
"connection": "close",
"content-type": "text/html; charset=UTF-8",
"x-powered-by": "PHP/8.1.33",
"transfer-encoding": "chunked",
"x-envoy-upstream-service-time": "425"
},
"body_size": 200000,
"final_url": "https://www.fotograf.de:443/",
"duration_ms": 1197
},
"ai_search_policy_evidence": {
"files": [
{
"id": "robots_txt",
"url": "https://www.fotograf.de:443/robots.txt",
"label": "robots.txt",
"reason": "",
"status": "found",
"body_size": 173,
"truncated": false,
"body_sha256": "cf97b302a0b241bcb4a70331c5c6a649ed0b26c7ab66125560a772a02dfb1c67",
"duration_ms": 469,
"http_status": 200,
"ai_bot_policy": {
"bot_directives": [],
"explicit_ai_bots": [],
"explicit_ai_bot_count": 0,
"wildcard_directive_count": 1,
"wildcard_directives_sample": [
{
"value": "",
"directive": "disallow"
}
]
},
"relevant_lines": [
"User-agent: *",
"Disallow:",
"Sitemap: https://www.fotograf.de/sitemap_index.xml"
]
},
{
"id": "llms_txt",
"url": "https://www.fotograf.de:443/llms.txt",
"label": "llms.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 510,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ai_txt",
"url": "https://www.fotograf.de:443/.well-known/ai.txt",
"label": "AI Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 566,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ai_policy_txt",
"url": "https://www.fotograf.de:443/.well-known/ai-policy.txt",
"label": "AI Policy",
"reason": "fetch_failed",
"status": "not_available",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 3041,
"http_status": null,
"relevant_lines": []
},
{
"id": "ward_txt",
"url": "https://www.fotograf.de:443/.well-known/ward.txt",
"label": "WARD Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 620,
"http_status": 404,
"relevant_lines": []
}
],
"origin": "https://www.fotograf.de:443",
"schema": "https://saferpage.de/schemas/ai-search-policy-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 5,
"found_file_count": 1,
"policy_file_count": 0,
"explicit_ai_bot_count": 0
},
"summary": "1 von 5 Policy-Datei(en) gefunden; 0 explizite KI-Bot-Regel(n) in robots.txt.",
"available": true,
"guardrails": [
"Nur feste Same-Origin-Policy-Dateien",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status und kurze relevante Zeilen"
],
"known_ai_bots": [
"GPTBot",
"ChatGPT-User",
"Google-Extended",
"ClaudeBot",
"PerplexityBot",
"CCBot"
],
"explicit_ai_bots": [],
"policy_file_count": 0,
"llms_ward_policy_status": "not_publicly_verified",
"robots_ai_policy_status": "generic_robots_policy"
},
"adtech_transparency_evidence": {
"files": [
{
"id": "ads_txt",
"url": "https://www.fotograf.de:443/ads.txt",
"label": "ads.txt",
"reason": "redirect_blocked",
"status": "not_available",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 414,
"http_status": 301,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
},
{
"id": "app_ads_txt",
"url": "https://www.fotograf.de:443/app-ads.txt",
"label": "app-ads.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 578,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
},
{
"id": "sellers_json",
"url": "https://www.fotograf.de:443/sellers.json",
"label": "sellers.json",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 518,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
}
],
"origin": "https://www.fotograf.de:443",
"schema": "https://saferpage.de/schemas/adtech-transparency-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 3,
"direct_count": 0,
"reseller_count": 0,
"found_file_count": 0,
"ads_txt_entry_count": 0,
"exchange_domain_count": 0,
"app_ads_txt_entry_count": 0,
"sellers_json_seller_count": 0
},
"summary": "0 von 3 AdTech-Transparenzdatei(en) gefunden; 0 DIRECT- und 0 RESELLER-Zeile(n).",
"available": true,
"guardrails": [
"Nur feste Same-Origin-AdTech-Dateien",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status, Zähler und kurze relevante Zeilen"
],
"direct_count": 0,
"ads_txt_found": false,
"reseller_count": 0,
"app_ads_txt_found": false,
"sellers_json_found": false,
"ads_txt_entry_count": 0,
"exchange_domain_count": 0,
"sellers_json_parse_ok": false,
"app_ads_txt_entry_count": 0,
"sellers_json_seller_count": 0
},
"security_trust_policy_evidence": {
"files": [
{
"id": "security_txt",
"url": "https://www.fotograf.de:443/.well-known/security.txt",
"label": "security.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 582,
"http_status": 404,
"relevant_lines": [],
"security_txt_policy": []
},
{
"id": "security_txt_legacy",
"url": "https://www.fotograf.de:443/security.txt",
"label": "security.txt legacy",
"reason": "",
"status": "found",
"body_size": 60,
"truncated": false,
"body_sha256": "ad92acde4fff2fc2c25a450b006108af36d5e5337b5c166b633afa70d24b4af0",
"duration_ms": 51,
"http_status": 200,
"relevant_lines": [
"OpenBugBounty: https://openbugbounty.org/bugbounty/beinbm/"
],
"security_txt_policy": {
"field_count": 0,
"contact_count": 0,
"expires_values": [],
"fields_present": [],
"policy_present": false,
"contact_samples": [],
"expires_present": false,
"canonical_present": false,
"encryption_present": false,
"preferred_languages": []
}
}
],
"origin": "https://www.fotograf.de:443",
"schema": "https://saferpage.de/schemas/security-trust-policy-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 2,
"field_count": 0,
"contact_count": 0,
"found_file_count": 1,
"preferred_well_known_found": 0
},
"summary": "1 von 2 security.txt-Ziel(en) gefunden; 0 Kontaktfeld(er), 0 strukturierte Feld(er).",
"available": true,
"guardrails": [
"Nur feste Same-Origin-security.txt-Ziele",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status und kurze relevante Zeilen"
],
"field_count": 0,
"contact_count": 0,
"fields_present": [],
"policy_present": false,
"expires_present": false,
"encryption_present": false,
"security_txt_found": true,
"preferred_well_known_found": false
}
},
"findings": [
{
"id": "unsupported_technology_version",
"title": "PHP-Version ist nicht mehr upstream unterstuetzt",
"public": true,
"version": "8.1.33",
"audience": "nutzer",
"category": "vulnerability",
"severity": "critical",
"confirmed": true,
"policy_id": "PHP-EOL-BEFORE-8.2",
"technology": "PHP",
"user_importance": 132,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "pre_consent_nonessential_cookies",
"title": "Möglicherweise nicht notwendige Cookies vor Einwilligung",
"public": true,
"source": "chromium_cookie_inventory",
"cookies": [
"_vwo_uuid_v2",
"__cf_bm"
],
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"_vwo_uuid_v2",
"__cf_bm"
],
"user_importance": 127,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "third_party_sensitive_query_leak",
"count": 2,
"title": "Sensible URL-Schlüssel im Drittanbieter-Kontext",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"2 im Scan gezählt"
],
"user_importance": 126,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "consent_state_reject_evidence_failed",
"title": "Consent-Zustand: Ablehnen löst weiterhin Datenschutz-Signale aus",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"Nach 'Ablehnen': 1 neue Cookie(s), 0 neue Tracking-Kontakt(e)"
],
"user_importance": 120,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "post_reject_new_cookies",
"count": 1,
"title": "Neue Cookies nach Ablehnen erkannt",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"Nach 'Ablehnen' neu gesetzt: 1 Cookie(s)"
],
"user_importance": 119,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "tracking_pixel_detected",
"count": 2,
"title": "Tracking-Pixel oder pixelnahe Requests erkannt",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"dev.visualwebsiteoptimizer.com",
"forms-na1.hsforms.com"
],
"user_importance": 119,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "third_party_page_url_parameter",
"count": 4,
"title": "Seiten-URL wird in Drittanbieter-Requests übertragen",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"forms-na1.hsforms.com",
"dev.visualwebsiteoptimizer.com",
"consent.cookiebot.com"
],
"user_importance": 118,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "pii_tracking_on_data_entry_page",
"title": "Dateneingabe und datenschutzrelevante Drittanbieter im selben Browseraufruf",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"Tracking-Signale auf einer Seite mit Dateneingabe/Formular erkannt"
],
"user_importance": 118,
"importance_label": "Wichtig für Nutzer",
"third_party_count": 1
},
{
"id": "external_canonical",
"title": "Canonical zeigt auf fremde Domain",
"public": true,
"audience": "nutzer",
"category": "seo",
"severity": "warning",
"canonical_url": "https://www.fotograf.de/",
"evidence_items": [
"https://www.fotograf.de/"
],
"user_importance": 118,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "hreflang_spam",
"title": "Hreflang-Alternates auffällig",
"public": true,
"audience": "nutzer",
"category": "seo",
"severity": "warning",
"evidence_items": [
"www.gotphoto.com",
"www.fotograf.de",
"www.gotphoto.at",
"www.gotphoto.ch",
"www.gotphoto.co.uk"
],
"user_importance": 117,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "gpc_privacy_domains_present",
"count": 1,
"title": "Datenschutzrelevante Kontakte trotz GPC-Signal",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"Trotz GPC: 1 Datenschutz-Domain(s), 2 Drittanbieter-Cookie(s)"
],
"user_importance": 116,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "privacy_policy_provider_disclosure_gap",
"title": "Erkannte Anbieter fehlen in der Datenschutzerklärung",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"Erkannte Anbieter sind nicht alle in der Datenschutzerklärung erwähnt"
],
"user_importance": 116,
"importance_label": "Wichtig für Nutzer",
"missing_providers": [
"Google Fonts"
]
},
{
"id": "external_link_spam",
"title": "Sehr viele externe Links erkannt",
"public": true,
"audience": "nutzer",
"category": "seo",
"severity": "warning",
"evidence_items": [
"58 externe Links auf der Startseite"
],
"user_importance": 116,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "gpc_tracking_storage_hints",
"count": 1,
"title": "Tracking-Hinweise im Storage trotz GPC-Signal",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"Trotz GPC: 1 Datenschutz-Domain(s), 2 Drittanbieter-Cookie(s)"
],
"user_importance": 115,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "gpc_third_party_cookies",
"count": 2,
"title": "Drittanbieter-Cookies trotz GPC-Signal",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"2 im Scan gezählt"
],
"user_importance": 114,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "consent_state_gpc_evidence_review",
"title": "Consent-Zustand: GPC mit Tracking-Hinweisen",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"GPC-Signal (Global Privacy Control) gesetzt – tatsächliche Wirkung manuell prüfen"
],
"user_importance": 112,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "browser_keystroke_listener_signals",
"count": 9,
"title": "Viele Tastatur-/Eingabe-Listener im Browser erkannt",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"Tastatur-Eingabe-Listener (Session-Replay-nah) im Browser-Lauf erkannt"
],
"user_importance": 110,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "pii_sensitive_link_query",
"links": [
{
"href": "https://app.hubspot.com/meetings/torsten-krone",
"params": [
"__hstc",
"__hssc",
"__hsfp",
"uuid"
],
"external": true
}
],
"title": "Links mit sensiblen Query-Parametern erkannt",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"forms-na1.hsforms.com",
"dev.visualwebsiteoptimizer.com",
"consent.cookiebot.com"
],
"user_importance": 108,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "long_lived_cookie",
"count": 1,
"title": "Langlebige Cookies erkannt",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "info",
"evidence_items": [
"Cookie mit sehr langer Laufzeit erkannt (Details im Cookie-Inventar)"
],
"user_importance": 104,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "browser_storage_tracking_hints",
"title": "Tracking-Hinweise im Browser-Storage",
"public": true,
"audience": "nutzer",
"category": "privacy",
"severity": "warning",
"storage_hints": [
"visitor"
],
"evidence_items": [
"visitor"
],
"user_importance": 92,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "external_script_without_sri",
"count": 1,
"title": "Externe Skripte ohne Subresource Integrity",
"public": true,
"audience": "nutzer",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"https://js.hsforms.net/forms/v2.js"
],
"user_importance": 84,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "image_alt_missing",
"count": 1,
"title": "Bilder ohne Alternativtext",
"public": true,
"audience": "nutzer",
"category": "accessibility",
"severity": "info",
"evidence_items": [
"https://www.fotograf.de/wp-content/uploads/sites/14/2025/07/randyrahmen-207x300-1-150x150.jpg"
],
"user_importance": 82,
"importance_label": "Wichtig für Nutzer"
},
{
"id": "missing_hsts",
"title": "HSTS fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "warning",
"evidence_items": [
"HTTP-Header „Strict-Transport-Security\" fehlt in der Antwort der Startseite"
],
"user_importance": 78,
"importance_label": "Technischer Hinweis"
},
{
"id": "too_many_render_blocking_assets",
"title": "Viele potenziell blockierende Assets",
"public": true,
"audience": "betreiber",
"category": "performance",
"severity": "info",
"evidence_items": [
"Viele render-blockierende CSS/JS-Ressourcen im <head> der Startseite"
],
"user_importance": 74,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_csp",
"title": "Content-Security-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "warning",
"evidence_items": [
"HTTP-Header „Content-Security-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 72,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_x_frame_options",
"title": "X-Frame-Options fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "warning",
"evidence_items": [
"HTTP-Header „X-Frame-Options\" fehlt in der Antwort der Startseite"
],
"user_importance": 70,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_x_content_type_options",
"title": "X-Content-Type-Options fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "warning",
"evidence_items": [
"HTTP-Header „X-Content-Type-Options\" fehlt in der Antwort der Startseite"
],
"user_importance": 70,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_cross_origin_embedder_policy",
"title": "Cross-Origin-Embedder-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Cross-Origin-Embedder-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 68,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_cross_origin_opener_policy",
"title": "Cross-Origin-Opener-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Cross-Origin-Opener-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 66,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_cross_origin_resource_policy",
"title": "Cross-Origin-Resource-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Cross-Origin-Resource-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 64,
"importance_label": "Technischer Hinweis"
},
{
"id": "third_country_transfer_review",
"title": "Drittland-/US-Anbieter im Browseraufruf prüfen",
"public": true,
"audience": "betreiber",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"googletagmanager.com"
],
"user_importance": 60,
"importance_label": "Technischer Hinweis"
},
{
"id": "consent_banner_dark_pattern_risk",
"count": 1,
"title": "Consent-Banner mit Dark-Pattern-/UX-Risiko",
"public": true,
"audience": "betreiber",
"category": "privacy",
"severity": "warning",
"evidence_items": [
"Banner-UX: Akzeptieren 0 vs. Ablehnen 1 – Ablehnen weniger prominent/gleichwertig"
],
"user_importance": 60,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_referrer_policy",
"title": "Referrer-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Referrer-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 40,
"importance_label": "Technischer Hinweis"
},
{
"id": "missing_permissions_policy",
"title": "Permissions-Policy fehlt",
"public": true,
"audience": "betreiber",
"category": "security_headers",
"severity": "info",
"evidence_items": [
"HTTP-Header „Permissions-Policy\" fehlt in der Antwort der Startseite"
],
"user_importance": 40,
"importance_label": "Technischer Hinweis"
},
{
"id": "browser_privacy_relevant_third_parties",
"title": "Datenschutzrelevante Drittanbieter im Browseraufruf",
"public": true,
"audience": "betreiber",
"category": "privacy",
"severity": "info",
"evidence_items": [
"googletagmanager.com"
],
"user_importance": 30,
"importance_label": "Technischer Hinweis"
},
{
"id": "remote_google_fonts_detected",
"title": "Remote-Schriften von Google erkannt",
"public": true,
"audience": "betreiber",
"category": "privacy",
"severity": "info",
"user_importance": 30,
"importance_label": "Technischer Hinweis"
},
{
"id": "many_browser_third_parties",
"title": "Viele Drittanbieter-Domains beim Laden",
"public": true,
"audience": "betreiber",
"category": "privacy",
"severity": "info",
"evidence_items": [
"googletagmanager.com"
],
"user_importance": 30,
"importance_label": "Technischer Hinweis"
},
{
"id": "unknown_vendor_jurisdiction",
"title": "Anbieter-Jurisdiktion nicht klar ableitbar",
"public": true,
"audience": "betreiber",
"category": "privacy",
"severity": "info",
"evidence_items": [
"googletagmanager.com"
],
"user_importance": 30,
"importance_label": "Technischer Hinweis"
}
],
"audit_modules": [
{
"id": "browser_evidence",
"color": "red",
"score": 12,
"title": "Browser-Nachweis",
"source": "Headless Chromium mit Screenshot- und Request-Telemetrie",
"status": "kritisch",
"evidence": "122 Request(s), 9 Drittanbieter-Domain(s), davon 1 datenschutzrelevant, 3 Browser-Cookie(s), Transfer-Prüfbedarf: 3, Referrer-/URL-Leaks: 3, Fingerprinting-/Replay-Hinweise: 1."
},
{
"id": "referrer_url_leaks",
"color": "red",
"score": 20,
"title": "Referrer & URL-Leaks",
"source": "Chromium-Request-Telemetrie ohne gespeicherte Parameterwerte",
"status": "kritisch",
"evidence": "3 Drittanbieter-Domain(s) mit Referrer-/URL-Leak-Prüfbedarf, 2 sensible Query-Kontexte."
},
{
"id": "security_tls",
"color": "red",
"score": 34,
"title": "Sicherheit, TLS & Header",
"source": "DNS, TLS, HTTP-Status, Zertifikat und Security-Header",
"status": "kritisch",
"evidence": "1 Infrastruktur-Hinweis(e), Security-Header: 0/9 vorhanden, 9 fehlen, externe Skript-Hosts: 1."
},
{
"id": "google_third_parties",
"color": "red",
"score": 46,
"title": "Google-Dienste & Drittanbieter",
"source": "Chromium-Requests, Anbieterklassifikation und Google Consent Mode Heuristik",
"status": "kritisch",
"evidence": "Google-Tags: ja, 3 Google-nahe Domain(s), Consent-Default: ja, Analytics: nein, Werbung: nein, Fonts: ja."
},
{
"id": "seo_integrity",
"color": "red",
"score": 46,
"title": "SEO-Integrität & Cloaking",
"source": "HTML-Inhalt, strukturierte Daten, Links und Googlebot-Vergleich",
"status": "kritisch",
"evidence": "3 SEO-Spam-Hinweis(e), 0 Cloaking-Hinweis(e)."
},
{
"id": "privacy_consent",
"color": "orange",
"score": 50,
"title": "Datenschutz, Cookies & Consent",
"source": "Browser, HTTP-Header, HTML und Consent-/Cookie-Heuristik",
"status": "auffällig",
"evidence": "0 Tracking-Script(s), 2 Cookie(s) vor Einwilligung, 0 Tracking-Cookie(s), Ablehnen-Option: ja, Consent-Audit: 61."
},
{
"id": "cookie_inventory",
"color": "yellow",
"score": 76,
"title": "Cookie-Inventar",
"source": "HTTP-Set-Cookie und Chromium-Cookies beim ersten Seitenaufruf",
"status": "prüfen",
"evidence": "3 Cookie(s), 0 Tracking-/Werbe-Cookie(s), 2 Drittanbieter-Cookie(s), 1 langlebig, 0 sehr lang."
},
{
"id": "forms_payments",
"color": "yellow",
"score": 78,
"title": "Formulare, Login & Zahlung",
"source": "HTML-Formulare, Eingabefelder, Zahlungsanbieter und Kontextlinks",
"status": "prüfen",
"evidence": "Die Seite kann Name/personenbezogene Daten, Newsletter, Zahlung abfragen."
},
{
"id": "pii_exposure",
"color": "yellow",
"score": 78,
"title": "PII, URL-Parameter & Datenleck-Schutz",
"source": "URL-Parameter, interne Links, HTML-Formulare, Browser-Drittanbieter und Dateneingabe-Kontext",
"status": "prüfen",
"evidence": "2 PII-/Datenleck-Hinweis(e) aus URL-, Formular- und Browserkontext."
},
{
"id": "tracking_pixels_beacons",
"color": "yellow",
"score": 80,
"title": "Tracking-Pixel & Beacons",
"source": "HTML-Pixel, Link-Ping-Attribute, Chromium-Requests und Browser-API-Instrumentierung",
"status": "prüfen",
"evidence": "2 Pixel-/Bildtracking-Hinweis(e), 0 Beacon-/Telemetry-Hinweis(e), 0 Link-Ping(s)."
},
{
"id": "consent_journey",
"color": "green",
"score": 92,
"title": "Consent-Journey-Matrix",
"source": "Chromium-Zustände: Erstaufruf, Reject, Accept und GPC",
"status": "unauffällig",
"evidence": "Consent-Journey: 0 neue Datenschutz-Domain(s) nach Ablehnen, 0 nach Akzeptieren, 1 im GPC-Aufruf."
},
{
"id": "performance_mobile",
"color": "green",
"score": 94,
"title": "Performance & mobile Nutzbarkeit",
"source": "HTTP-Antwort, HTML-Größe, Komprimierung und mobile Basis",
"status": "unauffällig",
"evidence": "Performance-Score 94, Antwortzeit 1226 ms."
},
{
"id": "site_coverage",
"color": "green",
"score": 95,
"title": "Seitenabdeckung & Crawl",
"source": "Startseiten-Links, Compliance-Links und begrenzter interner Zusatzabruf",
"status": "unauffällig",
"evidence": "30 interne Linkziele erkannt, 4 priorisierte Unterseite(n) abgerufen."
},
{
"id": "accessibility_usability",
"color": "green",
"score": 96,
"title": "Barrierefreiheit & Usability",
"source": "Passives HTML-Sample: Bilder, Formulare, Buttons, Sprache, Headings und Viewport",
"status": "unauffällig",
"evidence": "1 Bild(er) ohne alt, 0 Formularfeld(er) ohne Beschriftung, 0 Button(s) ohne Namen."
},
{
"id": "script_supply_chain",
"color": "green",
"score": 96,
"title": "Externe Skripte & SRI",
"source": "HTML-Script-Tags, Anbieterklassifikation und SRI-Attribute",
"status": "unauffällig",
"evidence": "1 externe Skript(e) von 1 Host(s), 1 ohne SRI, 0 Tracking-/Tag-nahe Skript(e)."
},
{
"id": "embedded_content",
"color": "green",
"score": 100,
"title": "Externe Inhalte & Widgets",
"source": "HTML-Embeds und Chromium-Drittanbieter-Requests",
"status": "unauffällig",
"evidence": "0 externe Embed-/Widget-Dienst(e), 0 davon im ersten Browseraufruf geladen."
},
{
"id": "operator_transparency",
"color": "green",
"score": 100,
"title": "Impressum, Kontakt & Datenschutzerklärung",
"source": "Deutschsprachige Betreiber- und Datenschutzhinweis-Erkennung",
"status": "unauffällig",
"evidence": "Impressum: ja, Datenschutz: ja, Kontakt: ja."
}
],
"ai_search_policy_evidence": {
"files": [
{
"id": "robots_txt",
"url": "https://www.fotograf.de:443/robots.txt",
"label": "robots.txt",
"reason": "",
"status": "found",
"body_size": 173,
"truncated": false,
"body_sha256": "cf97b302a0b241bcb4a70331c5c6a649ed0b26c7ab66125560a772a02dfb1c67",
"duration_ms": 469,
"http_status": 200,
"ai_bot_policy": {
"bot_directives": [],
"explicit_ai_bots": [],
"explicit_ai_bot_count": 0,
"wildcard_directive_count": 1,
"wildcard_directives_sample": [
{
"value": "",
"directive": "disallow"
}
]
},
"relevant_lines": [
"User-agent: *",
"Disallow:",
"Sitemap: https://www.fotograf.de/sitemap_index.xml"
]
},
{
"id": "llms_txt",
"url": "https://www.fotograf.de:443/llms.txt",
"label": "llms.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 510,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ai_txt",
"url": "https://www.fotograf.de:443/.well-known/ai.txt",
"label": "AI Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 566,
"http_status": 404,
"relevant_lines": []
},
{
"id": "ai_policy_txt",
"url": "https://www.fotograf.de:443/.well-known/ai-policy.txt",
"label": "AI Policy",
"reason": "fetch_failed",
"status": "not_available",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 3041,
"http_status": null,
"relevant_lines": []
},
{
"id": "ward_txt",
"url": "https://www.fotograf.de:443/.well-known/ward.txt",
"label": "WARD Policy",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 620,
"http_status": 404,
"relevant_lines": []
}
],
"origin": "https://www.fotograf.de:443",
"schema": "https://saferpage.de/schemas/ai-search-policy-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 5,
"found_file_count": 1,
"policy_file_count": 0,
"explicit_ai_bot_count": 0
},
"summary": "1 von 5 Policy-Datei(en) gefunden; 0 explizite KI-Bot-Regel(n) in robots.txt.",
"available": true,
"guardrails": [
"Nur feste Same-Origin-Policy-Dateien",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status und kurze relevante Zeilen"
],
"known_ai_bots": [
"GPTBot",
"ChatGPT-User",
"Google-Extended",
"ClaudeBot",
"PerplexityBot",
"CCBot"
],
"explicit_ai_bots": [],
"policy_file_count": 0,
"llms_ward_policy_status": "not_publicly_verified",
"robots_ai_policy_status": "generic_robots_policy"
},
"adtech_transparency_evidence": {
"files": [
{
"id": "ads_txt",
"url": "https://www.fotograf.de:443/ads.txt",
"label": "ads.txt",
"reason": "redirect_blocked",
"status": "not_available",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 414,
"http_status": 301,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
},
{
"id": "app_ads_txt",
"url": "https://www.fotograf.de:443/app-ads.txt",
"label": "app-ads.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 578,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
},
{
"id": "sellers_json",
"url": "https://www.fotograf.de:443/sellers.json",
"label": "sellers.json",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 518,
"http_status": 404,
"ads_txt_policy": [],
"relevant_lines": [],
"sellers_json_policy": []
}
],
"origin": "https://www.fotograf.de:443",
"schema": "https://saferpage.de/schemas/adtech-transparency-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 3,
"direct_count": 0,
"reseller_count": 0,
"found_file_count": 0,
"ads_txt_entry_count": 0,
"exchange_domain_count": 0,
"app_ads_txt_entry_count": 0,
"sellers_json_seller_count": 0
},
"summary": "0 von 3 AdTech-Transparenzdatei(en) gefunden; 0 DIRECT- und 0 RESELLER-Zeile(n).",
"available": true,
"guardrails": [
"Nur feste Same-Origin-AdTech-Dateien",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status, Zähler und kurze relevante Zeilen"
],
"direct_count": 0,
"ads_txt_found": false,
"reseller_count": 0,
"app_ads_txt_found": false,
"sellers_json_found": false,
"ads_txt_entry_count": 0,
"exchange_domain_count": 0,
"sellers_json_parse_ok": false,
"app_ads_txt_entry_count": 0,
"sellers_json_seller_count": 0
},
"security_trust_policy_evidence": {
"files": [
{
"id": "security_txt",
"url": "https://www.fotograf.de:443/.well-known/security.txt",
"label": "security.txt",
"reason": "http_error",
"status": "missing",
"body_size": 0,
"truncated": false,
"body_sha256": "",
"duration_ms": 582,
"http_status": 404,
"relevant_lines": [],
"security_txt_policy": []
},
{
"id": "security_txt_legacy",
"url": "https://www.fotograf.de:443/security.txt",
"label": "security.txt legacy",
"reason": "",
"status": "found",
"body_size": 60,
"truncated": false,
"body_sha256": "ad92acde4fff2fc2c25a450b006108af36d5e5337b5c166b633afa70d24b4af0",
"duration_ms": 51,
"http_status": 200,
"relevant_lines": [
"OpenBugBounty: https://openbugbounty.org/bugbounty/beinbm/"
],
"security_txt_policy": {
"field_count": 0,
"contact_count": 0,
"expires_values": [],
"fields_present": [],
"policy_present": false,
"contact_samples": [],
"expires_present": false,
"canonical_present": false,
"encryption_present": false,
"preferred_languages": []
}
}
],
"origin": "https://www.fotograf.de:443",
"schema": "https://saferpage.de/schemas/security-trust-policy-evidence.v1",
"status": "checked",
"metrics": {
"file_count": 2,
"field_count": 0,
"contact_count": 0,
"found_file_count": 1,
"preferred_well_known_found": 0
},
"summary": "1 von 2 security.txt-Ziel(en) gefunden; 0 Kontaktfeld(er), 0 strukturierte Feld(er).",
"available": true,
"guardrails": [
"Nur feste Same-Origin-security.txt-Ziele",
"Keine Off-Host-Redirects",
"64-KB-Body-Limit",
"Öffentlich nur Hash, Status und kurze relevante Zeilen"
],
"field_count": 0,
"contact_count": 0,
"fields_present": [],
"policy_present": false,
"expires_present": false,
"encryption_present": false,
"security_txt_found": true,
"preferred_well_known_found": false
},
"site_coverage_analysis": {
"color": "green",
"pages": [
{
"url": "https://www.fotograf.de/blog/die-16-haeufigsten-fragen-zum-datenschutz-fuer-fotografen-dsgvo",
"path": "/blog/die-16-haeufigsten-fragen-zum-datenschutz-fuer-fotografen-dsgvo",
"text": "",
"source": "sitemap",
"category": "datenschutz",
"priority": 104
},
{
"url": "https://www.fotograf.de/datenschutz",
"path": "/datenschutz",
"text": "",
"source": "homepage_link+sitemap",
"category": "datenschutz",
"priority": 104
},
{
"url": "https://www.fotograf.de/datenschutzerklaerung",
"path": "/datenschutzerklaerung",
"text": "Datenschutzerklärung",
"source": "homepage_link+sitemap",
"category": "datenschutz",
"priority": 104
},
{
"url": "https://www.fotograf.de/entagged-privacynotice",
"path": "/entagged-privacynotice",
"text": "",
"source": "sitemap",
"category": "datenschutz",
"priority": 104
},
{
"url": "https://www.fotograf.de/recruiting-privacy-notice",
"path": "/recruiting-privacy-notice",
"text": "Recruiting Privacy Notice",
"source": "homepage_link+sitemap",
"category": "datenschutz",
"priority": 104
},
{
"url": "https://www.fotograf.de/impressum",
"path": "/impressum",
"text": "Impressum",
"source": "homepage_link+sitemap",
"category": "impressum",
"priority": 100
},
{
"url": "https://www.fotograf.de/cookie-declaration",
"path": "/cookie-declaration",
"text": "",
"source": "sitemap",
"category": "cookies",
"priority": 90
},
{
"url": "https://www.fotograf.de/cookie-erklaerung",
"path": "/cookie-erklaerung",
"text": "",
"source": "sitemap",
"category": "cookies",
"priority": 90
},
{
"url": "https://www.fotograf.de/agb",
"path": "/agb",
"text": "Allgemeine Geschäftsbedingungen",
"source": "homepage_link+sitemap",
"category": "agb",
"priority": 84
},
{
"url": "https://www.fotograf.de/sign-up",
"path": "/sign-up",
"text": "Kostenlos testen",
"source": "homepage_link",
"category": "login",
"priority": 72
},
{
"url": "https://www.fotograf.de/blog/osternewsletter-versenden",
"path": "/blog/osternewsletter-versenden",
"text": "",
"source": "sitemap",
"category": "newsletter",
"priority": 68
},
{
"url": "https://www.fotograf.de/danke-newsletter-anmeldung",
"path": "/danke-newsletter-anmeldung",
"text": "",
"source": "sitemap",
"category": "newsletter",
"priority": 68
}
],
"score": 95,
"status": "unauffällig",
"summary": "30 interne Linkziele erkannt (112 aus Sitemap), 4 priorisierte Unterseite(n) zusätzlich abgerufen.",
"findings": [
{
"id": "privacy_policy_provider_disclosure_gap",
"title": "Erkannte Anbieter fehlen in der Datenschutzerklärung",
"public": true,
"category": "privacy",
"severity": "warning",
"missing_providers": [
"Google Fonts"
]
}
],
"robots_ok": true,
"categories": {
"agb": 1,
"login": 1,
"preise": 1,
"cookies": 2,
"impressum": 1,
"newsletter": 4,
"unterseite": 15,
"datenschutz": 5
},
"sample_limit": 4,
"sampled_count": 4,
"sampled_pages": [
{
"ok": true,
"url": "https://www.fotograf.de/blog/die-16-haeufigsten-fragen-zum-datenschutz-fuer-fotografen-dsgvo",
"path": "/blog/die-16-haeufigsten-fragen-zum-datenschutz-fuer-fotografen-dsgvo",
"audit": {
"form_count": 0,
"finding_ids": [
"operator_identity_unclear"
],
"cookie_count": 0,
"imprint_found": true,
"consent_hint_found": true,
"reject_option_found": true,
"privacy_policy_found": true,
"tracking_script_count": 0,
"pre_consent_cookie_count": 0,
"pre_consent_tracking_cookie_count": 0
},
"forms": 0,
"title": "DSGVO für Fotografen – Leitfaden Schule & Kita",
"status": 200,
"category": "datenschutz",
"duration_ms": 841,
"privacy_hint": true,
"privacy_policy_audit": {
"url": "https://www.fotograf.de/blog/die-16-haeufigsten-fragen-zum-datenschutz-fuer-fotografen-dsgvo",
"color": "green",
"found": [
"Verantwortlicher / Anbieter",
"Kontakt / Datenschutzkontakt",
"Zwecke der Verarbeitung",
"Rechtsgrundlagen",
"Betroffenenrechte",
"Speicherfrist / Löschung",
"Empfänger / Auftragsverarbeiter",
"Cookies / Tracking",
"Widerruf / Opt-out",
"Beschwerde bei Aufsichtsbehörde",
"Drittlandtransfer",
"Stand / Aktualitätsdatum",
"Datenschutzkontakt / DPO-Hinweis",
"Verständliche Satzlänge"
],
"score": 90,
"checks": [
{
"id": "controller_identity",
"found": true,
"label": "Verantwortlicher / Anbieter"
},
{
"id": "contact",
"found": true,
"label": "Kontakt / Datenschutzkontakt"
},
{
"id": "purposes",
"found": true,
"label": "Zwecke der Verarbeitung"
},
{
"id": "legal_basis",
"found": true,
"label": "Rechtsgrundlagen"
},
{
"id": "rights",
"found": true,
"label": "Betroffenenrechte"
},
{
"id": "retention",
"found": true,
"label": "Speicherfrist / Löschung"
},
{
"id": "recipients",
"found": true,
"label": "Empfänger / Auftragsverarbeiter"
},
{
"id": "cookies_tracking",
"found": true,
"label": "Cookies / Tracking"
},
{
"id": "withdrawal",
"found": true,
"label": "Widerruf / Opt-out"
},
{
"id": "complaint_authority",
"found": true,
"label": "Beschwerde bei Aufsichtsbehörde"
},
{
"id": "third_country_transfer",
"found": true,
"label": "Drittlandtransfer"
},
{
"id": "update_date",
"found": true,
"label": "Stand / Aktualitätsdatum",
"detail": "2023-07-10"
},
{
"id": "dpo_contact",
"found": true,
"label": "Datenschutzkontakt / DPO-Hinweis"
},
{
"id": "readability",
"found": true,
"label": "Verständliche Satzlänge",
"detail": "8.4 Wörter/Satz"
}
],
"status": "unauffällig",
"missing": [],
"summary": "14 von 14 zentralen Datenschutz-Bausteinen erkannt.",
"findings": [
{
"id": "privacy_policy_stale",
"title": "Datenschutzerklärung wirkt veraltet",
"public": true,
"age_days": 1075,
"category": "privacy",
"severity": "info",
"last_updated": "2023-07-10"
}
],
"available": true,
"freshness": {
"stale": true,
"age_days": 1075,
"last_updated": "2023-07-10",
"update_date_found": true
},
"word_count": 1739,
"readability": {
"hard_to_read": false,
"sentence_count": 208,
"avg_sentence_words": 8.4
},
"missing_count": 0,
"dpo_contact_found": true
}
},
{
"ok": true,
"url": "https://www.fotograf.de/datenschutz",
"path": "/datenschutz",
"audit": {
"form_count": 0,
"finding_ids": [
"consent_no_reject_option",
"consent_accept_only"
],
"cookie_count": 0,
"imprint_found": true,
"consent_hint_found": true,
"reject_option_found": false,
"privacy_policy_found": true,
"tracking_script_count": 0,
"pre_consent_cookie_count": 0,
"pre_consent_tracking_cookie_count": 0
},
"forms": 0,
"title": "Daten & Datenschutz - fotograf.de – Das Shopsystem für Fotograf:innen | Fotos online verkaufen",
"status": 200,
"category": "datenschutz",
"duration_ms": 849,
"privacy_hint": true,
"privacy_policy_audit": {
"url": "https://www.fotograf.de/datenschutz",
"color": "orange",
"found": [
"Verantwortlicher / Anbieter",
"Kontakt / Datenschutzkontakt",
"Rechtsgrundlagen",
"Betroffenenrechte",
"Speicherfrist / Löschung",
"Empfänger / Auftragsverarbeiter",
"Cookies / Tracking",
"Widerruf / Opt-out",
"Datenschutzkontakt / DPO-Hinweis",
"Verständliche Satzlänge"
],
"score": 71,
"checks": [
{
"id": "controller_identity",
"found": true,
"label": "Verantwortlicher / Anbieter"
},
{
"id": "contact",
"found": true,
"label": "Kontakt / Datenschutzkontakt"
},
{
"id": "purposes",
"found": false,
"label": "Zwecke der Verarbeitung"
},
{
"id": "legal_basis",
"found": true,
"label": "Rechtsgrundlagen"
},
{
"id": "rights",
"found": true,
"label": "Betroffenenrechte"
},
{
"id": "retention",
"found": true,
"label": "Speicherfrist / Löschung"
},
{
"id": "recipients",
"found": true,
"label": "Empfänger / Auftragsverarbeiter"
},
{
"id": "cookies_tracking",
"found": true,
"label": "Cookies / Tracking"
},
{
"id": "withdrawal",
"found": true,
"label": "Widerruf / Opt-out"
},
{
"id": "complaint_authority",
"found": false,
"label": "Beschwerde bei Aufsichtsbehörde"
},
{
"id": "third_country_transfer",
"found": false,
"label": "Drittlandtransfer"
},
{
"id": "update_date",
"found": false,
"label": "Stand / Aktualitätsdatum",
"detail": ""
},
{
"id": "dpo_contact",
"found": true,
"label": "Datenschutzkontakt / DPO-Hinweis"
},
{
"id": "readability",
"found": true,
"label": "Verständliche Satzlänge",
"detail": "12.8 Wörter/Satz"
}
],
"status": "auffällig",
"missing": [
"Zwecke der Verarbeitung",
"Beschwerde bei Aufsichtsbehörde",
"Drittlandtransfer",
"Stand / Aktualitätsdatum"
],
"summary": "10 von 14 zentralen Datenschutz-Bausteinen erkannt.",
"findings": [
{
"id": "privacy_policy_update_date_missing",
"title": "Stand der Datenschutzerklärung nicht klar erkennbar",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"available": true,
"freshness": {
"stale": false,
"age_days": null,
"last_updated": "",
"update_date_found": false
},
"word_count": 1578,
"readability": {
"hard_to_read": false,
"sentence_count": 123,
"avg_sentence_words": 12.8
},
"missing_count": 4,
"dpo_contact_found": true
}
},
{
"ok": true,
"url": "https://www.fotograf.de/datenschutzerklaerung",
"path": "/datenschutzerklaerung",
"audit": {
"form_count": 0,
"finding_ids": [],
"cookie_count": 0,
"imprint_found": true,
"consent_hint_found": true,
"reject_option_found": true,
"privacy_policy_found": true,
"tracking_script_count": 0,
"pre_consent_cookie_count": 0,
"pre_consent_tracking_cookie_count": 0
},
"forms": 0,
"title": "Datenschutzerklärung - fotograf.de – Das Shopsystem für Fotograf:innen | Fotos online verkaufen",
"status": 200,
"category": "datenschutz",
"duration_ms": 816,
"privacy_hint": true,
"privacy_policy_audit": {
"url": "https://www.fotograf.de/datenschutzerklaerung",
"color": "green",
"found": [
"Verantwortlicher / Anbieter",
"Kontakt / Datenschutzkontakt",
"Zwecke der Verarbeitung",
"Rechtsgrundlagen",
"Betroffenenrechte",
"Speicherfrist / Löschung",
"Empfänger / Auftragsverarbeiter",
"Cookies / Tracking",
"Widerruf / Opt-out",
"Beschwerde bei Aufsichtsbehörde",
"Drittlandtransfer",
"Stand / Aktualitätsdatum",
"Datenschutzkontakt / DPO-Hinweis",
"Verständliche Satzlänge"
],
"score": 100,
"checks": [
{
"id": "controller_identity",
"found": true,
"label": "Verantwortlicher / Anbieter"
},
{
"id": "contact",
"found": true,
"label": "Kontakt / Datenschutzkontakt"
},
{
"id": "purposes",
"found": true,
"label": "Zwecke der Verarbeitung"
},
{
"id": "legal_basis",
"found": true,
"label": "Rechtsgrundlagen"
},
{
"id": "rights",
"found": true,
"label": "Betroffenenrechte"
},
{
"id": "retention",
"found": true,
"label": "Speicherfrist / Löschung"
},
{
"id": "recipients",
"found": true,
"label": "Empfänger / Auftragsverarbeiter"
},
{
"id": "cookies_tracking",
"found": true,
"label": "Cookies / Tracking"
},
{
"id": "withdrawal",
"found": true,
"label": "Widerruf / Opt-out"
},
{
"id": "complaint_authority",
"found": true,
"label": "Beschwerde bei Aufsichtsbehörde"
},
{
"id": "third_country_transfer",
"found": true,
"label": "Drittlandtransfer"
},
{
"id": "update_date",
"found": true,
"label": "Stand / Aktualitätsdatum",
"detail": "2026-03-01"
},
{
"id": "dpo_contact",
"found": true,
"label": "Datenschutzkontakt / DPO-Hinweis"
},
{
"id": "readability",
"found": true,
"label": "Verständliche Satzlänge",
"detail": "10.9 Wörter/Satz"
}
],
"status": "unauffällig",
"missing": [],
"summary": "14 von 14 zentralen Datenschutz-Bausteinen erkannt.",
"findings": [],
"available": true,
"freshness": {
"stale": false,
"age_days": 110,
"last_updated": "2026-03-01",
"update_date_found": true
},
"word_count": 12439,
"readability": {
"hard_to_read": false,
"sentence_count": 1136,
"avg_sentence_words": 10.9
},
"missing_count": 0,
"dpo_contact_found": true
}
},
{
"ok": true,
"url": "https://www.fotograf.de/entagged-privacynotice",
"path": "/entagged-privacynotice",
"audit": {
"form_count": 0,
"finding_ids": [
"privacy_policy_too_thin",
"consent_no_reject_option",
"consent_accept_only"
],
"cookie_count": 0,
"imprint_found": true,
"consent_hint_found": true,
"reject_option_found": false,
"privacy_policy_found": true,
"tracking_script_count": 0,
"pre_consent_cookie_count": 0,
"pre_consent_tracking_cookie_count": 0
},
"forms": 0,
"title": "Data Privacy Notice for Entagged Mobile App - fotograf.de – Das Shopsystem für Fotograf:innen | Fotos online verkaufen",
"status": 200,
"category": "datenschutz",
"duration_ms": 830,
"privacy_hint": true,
"privacy_policy_audit": {
"url": "https://www.fotograf.de/entagged-privacynotice",
"color": "yellow",
"found": [
"Verantwortlicher / Anbieter",
"Kontakt / Datenschutzkontakt",
"Zwecke der Verarbeitung",
"Rechtsgrundlagen",
"Betroffenenrechte",
"Empfänger / Auftragsverarbeiter",
"Cookies / Tracking",
"Widerruf / Opt-out",
"Beschwerde bei Aufsichtsbehörde",
"Drittlandtransfer",
"Datenschutzkontakt / DPO-Hinweis",
"Verständliche Satzlänge"
],
"score": 86,
"checks": [
{
"id": "controller_identity",
"found": true,
"label": "Verantwortlicher / Anbieter"
},
{
"id": "contact",
"found": true,
"label": "Kontakt / Datenschutzkontakt"
},
{
"id": "purposes",
"found": true,
"label": "Zwecke der Verarbeitung"
},
{
"id": "legal_basis",
"found": true,
"label": "Rechtsgrundlagen"
},
{
"id": "rights",
"found": true,
"label": "Betroffenenrechte"
},
{
"id": "retention",
"found": false,
"label": "Speicherfrist / Löschung"
},
{
"id": "recipients",
"found": true,
"label": "Empfänger / Auftragsverarbeiter"
},
{
"id": "cookies_tracking",
"found": true,
"label": "Cookies / Tracking"
},
{
"id": "withdrawal",
"found": true,
"label": "Widerruf / Opt-out"
},
{
"id": "complaint_authority",
"found": true,
"label": "Beschwerde bei Aufsichtsbehörde"
},
{
"id": "third_country_transfer",
"found": true,
"label": "Drittlandtransfer"
},
{
"id": "update_date",
"found": false,
"label": "Stand / Aktualitätsdatum",
"detail": ""
},
{
"id": "dpo_contact",
"found": true,
"label": "Datenschutzkontakt / DPO-Hinweis"
},
{
"id": "readability",
"found": true,
"label": "Verständliche Satzlänge",
"detail": "16.1 Wörter/Satz"
}
],
"status": "prüfen",
"missing": [
"Speicherfrist / Löschung",
"Stand / Aktualitätsdatum"
],
"summary": "12 von 14 zentralen Datenschutz-Bausteinen erkannt.",
"findings": [
{
"id": "privacy_policy_update_date_missing",
"title": "Stand der Datenschutzerklärung nicht klar erkennbar",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"available": true,
"freshness": {
"stale": false,
"age_days": null,
"last_updated": "",
"update_date_found": false
},
"word_count": 1498,
"readability": {
"hard_to_read": false,
"sentence_count": 93,
"avg_sentence_words": 16.1
},
"missing_count": 2,
"dpo_contact_found": true
}
}
],
"robots_checked": true,
"sitemap_sources": [
"https://www.fotograf.de/sitemap_index.xml",
"https://www.fotograf.de:443/sitemap.xml",
"https://www.fotograf.de/page-sitemap.xml",
"https://www.fotograf.de/elementskit_template-sitemap.xml",
"https://www.fotograf.de/masterclasses-sitemap.xml",
"https://www.fotograf.de/blog-sitemap.xml",
"https://www.fotograf.de/kunden-sitemap.xml",
"https://www.fotograf.de/guide-sitemap.xml"
],
"sitemap_available": true,
"sitemap_url_count": 112,
"homepage_link_count": 71,
"internal_link_count": 30,
"privacy_policy_audit": {
"url": "https://www.fotograf.de/datenschutzerklaerung",
"color": "green",
"found": [
"Verantwortlicher / Anbieter",
"Kontakt / Datenschutzkontakt",
"Zwecke der Verarbeitung",
"Rechtsgrundlagen",
"Betroffenenrechte",
"Speicherfrist / Löschung",
"Empfänger / Auftragsverarbeiter",
"Cookies / Tracking",
"Widerruf / Opt-out",
"Beschwerde bei Aufsichtsbehörde",
"Drittlandtransfer",
"Stand / Aktualitätsdatum",
"Datenschutzkontakt / DPO-Hinweis",
"Verständliche Satzlänge"
],
"score": 100,
"checks": [
{
"id": "controller_identity",
"found": true,
"label": "Verantwortlicher / Anbieter"
},
{
"id": "contact",
"found": true,
"label": "Kontakt / Datenschutzkontakt"
},
{
"id": "purposes",
"found": true,
"label": "Zwecke der Verarbeitung"
},
{
"id": "legal_basis",
"found": true,
"label": "Rechtsgrundlagen"
},
{
"id": "rights",
"found": true,
"label": "Betroffenenrechte"
},
{
"id": "retention",
"found": true,
"label": "Speicherfrist / Löschung"
},
{
"id": "recipients",
"found": true,
"label": "Empfänger / Auftragsverarbeiter"
},
{
"id": "cookies_tracking",
"found": true,
"label": "Cookies / Tracking"
},
{
"id": "withdrawal",
"found": true,
"label": "Widerruf / Opt-out"
},
{
"id": "complaint_authority",
"found": true,
"label": "Beschwerde bei Aufsichtsbehörde"
},
{
"id": "third_country_transfer",
"found": true,
"label": "Drittlandtransfer"
},
{
"id": "update_date",
"found": true,
"label": "Stand / Aktualitätsdatum",
"detail": "2026-03-01"
},
{
"id": "dpo_contact",
"found": true,
"label": "Datenschutzkontakt / DPO-Hinweis"
},
{
"id": "readability",
"found": true,
"label": "Verständliche Satzlänge",
"detail": "10.9 Wörter/Satz"
}
],
"status": "unauffällig",
"missing": [],
"summary": "14 von 14 zentralen Datenschutz-Bausteinen erkannt.",
"findings": [],
"available": true,
"freshness": {
"stale": false,
"age_days": 110,
"last_updated": "2026-03-01",
"update_date_found": true
},
"word_count": 12439,
"readability": {
"hard_to_read": false,
"sentence_count": 1136,
"avg_sentence_words": 10.9
},
"missing_count": 0,
"dpo_contact_found": true
},
"sitemap_source_count": 8,
"provider_disclosure_audit": {
"color": "orange",
"found": [
"Google Tag Manager"
],
"score": 50,
"checks": [
{
"id": "fonts_google_fonts",
"found": false,
"category": "fonts",
"evidence": [
"fonts.gstatic.com",
"fonts.googleapis.com"
],
"keywords": [
"google fonts",
"fonts.googleapis",
"fonts.gstatic"
],
"provider": "Google Fonts",
"category_label": "Schriften"
},
{
"id": "tag_manager_google_tag_manager",
"found": true,
"category": "tag_manager",
"evidence": [
"GTM-MPQRLZB",
"googletagmanager.com"
],
"keywords": [
"google tag manager",
"tag manager",
"googletagmanager",
"gtm-"
],
"provider": "Google Tag Manager",
"category_label": "Tracking-ID"
}
],
"status": "auffällig",
"missing": [
"Google Fonts"
],
"summary": "1 von 2 technisch erkannten Anbieter(n) wurden in der Datenschutzerklärung erwähnt.",
"available": true,
"missing_count": 1,
"detected_count": 2,
"mentioned_count": 1
},
"important_categories_found": [
"cookies",
"datenschutz",
"impressum"
],
"sampled_tracking_page_count": 0,
"sampled_form_privacy_gap_count": 0,
"sitemap_candidate_source_count": 2
},
"page_analysis": {
"h1": [
"Mehr Umsatz. Weniger Stress. <br> Die <span><span>#1</span></span> für Kita- und Schulfotografie."
],
"h2": [
"<span>Ergebnisse</span>, die für sich sprechen",
"<span><span>Mehr Verkäufe</span></span> mit unserem umsatzstärksten Shop aller Zeiten",
"<span><span>Automatisiertes</span></span> <span><span>Wachstum</span></span> mit E-Mail Marketing – sofort einsatzbereit und ohne Vorkenntnisse",
"Automatisierte Büroarbeit für deinen <span><span>Erfolg</span></span> – ganz ohne Überstunden",
"Dein <span><span>gesamter Workflow</span></span> – digital von Anfang bis Ende.",
"Die Plattform für mehr <span><span>Wachstum</span></span>",
"Erzähl uns <span><span>deine Geschichte</span></span>.",
"Eine Plattform für deinen <span><span>kompletten Prozess</span></span>",
"<span><span>Professionelle Tools</span></span> für Fotograf:innen wie dich",
"Entwickelt für <span><span>jede Art</span></span> von High-Volume-Fotografie"
],
"title": "fotograf.de – Das Shopsystem für Fotograf:innen | Fotos online verkaufen",
"keywords": [
[
"fotograf",
27
],
[
"innen",
12
],
[
"kund",
10
],
[
"jetzt",
9
],
[
"dich",
9
],
[
"deine",
9
],
[
"dein",
9
],
[
"umsatz",
7
],
[
"wachstum",
7
],
[
"unsere",
7
]
],
"language": "de-de",
"description": "Entdecke Fotograf.de, das führende Shopsystem für Fotograf:innen: ✓ automatische Sortierung ✓ einfache Rechnungs- & Bestellabwicklung ✓ Jetzt kostenlos starten!",
"favicon_url": "https://www.fotograf.de:443/favicon.ico",
"link_counts": {
"external": 9,
"internal": 62
},
"preview_image": "/cache/screenshots/fotograf.de-160x150-ec8630eb5fcc4d5bb0.png",
"screenshot_url": "/cache/screenshots/fotograf.de-160x150-ec8630eb5fcc4d5bb0.png",
"external_scripts": [],
"browser_final_url": "https://www.fotograf.de/",
"meta_preview_image": "https://www.fotograf.de/wp-content/uploads/sites/14/2025/07/fotograf-regular2400x-1.png",
"screenshot_renderer": "playwright-chromium",
"external_link_targets": [
{
"host": "app.fotograf.de",
"count": 1,
"examples": [
{
"href": "https://app.fotograf.de/login/login",
"text": "Login"
}
],
"nofollow": 0,
"strength": "weak",
"follow_count": 1
},
{
"host": "app.gotphoto.com",
"count": 1,
"examples": [
{
"href": "https://app.gotphoto.com/cookie_declaration?_gl=1*knr0dk*_gcl_au*MTQ4NjAwNjk0Ny4xNzI4Mjg1NDM5",
"text": "Cookie-Erklärung"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 1
},
{
"host": "app.hubspot.com",
"count": 1,
"examples": [
{
"href": "https://app.hubspot.com/meetings/torsten-krone?__hstc=85066374.399acf225c23dd0271b07f35ffe35945.1747828156690.1752572479690.1752581653632.67&__hssc=85066374.7.1752581653632&__hsfp=2053954935&uuid=0ea13228-7b8c-409e-810e-e6103693407b",
"text": "Beratungsgespräch"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 1
},
{
"host": "facebook.com",
"count": 1,
"examples": [
{
"href": "https://www.facebook.com/fotograf.de/",
"text": "Facebook"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 1
},
{
"host": "instagram.com",
"count": 1,
"examples": [
{
"href": "https://www.instagram.com/fotograf.de/",
"text": "Instagram"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 1
},
{
"host": "kamera-kunterbunt.de",
"count": 1,
"examples": [
{
"href": "https://www.kamera-kunterbunt.de/",
"text": "Kamera Kunterbunt"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 1
},
{
"host": "linkedin.com",
"count": 1,
"examples": [
{
"href": "https://www.linkedin.com/company/fde-gotphoto/posts/?feedView=all",
"text": "Linkedin"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 1
},
{
"host": "status.gotphoto.com",
"count": 1,
"examples": [
{
"href": "https://status.gotphoto.com/",
"text": "System Status"
}
],
"nofollow": 0,
"strength": "strong",
"follow_count": 1
},
{
"host": "youtube.com",
"count": 1,
"examples": [
{
"href": "https://www.youtube.com/@fotograf-de",
"text": "Youtube"
}
],
"nofollow": 0,
"strength": "weak",
"follow_count": 1
}
]
},
"browser_analysis": {
"cookies": {
"items": [
{
"name": "__cf_bm",
"domain": ".hsforms.net",
"secure": true,
"expires": 1781853700.291916,
"http_only": true,
"same_site": "None"
},
{
"name": "_vwo_uuid_v2",
"domain": ".fotograf.de",
"secure": false,
"expires": 1813474300,
"http_only": false,
"same_site": "Lax"
},
{
"name": "__cf_bm",
"domain": ".hsforms.com",
"secure": true,
"expires": 1781853701.000864,
"http_only": true,
"same_site": "None"
}
],
"total": 3,
"third_party": 2
},
"storage": {
"total": 1,
"local_storage_keys": [
"isReturningVisitor"
],
"tracking_key_hints": [
"visitor"
],
"local_storage_total": 1,
"session_storage_keys": [],
"session_storage_total": 0
},
"findings": [
{
"id": "browser_privacy_relevant_third_parties",
"title": "Datenschutzrelevante Drittanbieter im Browseraufruf",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "remote_google_fonts_detected",
"title": "Remote-Schriften von Google erkannt",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "post_reject_new_cookies",
"count": 1,
"title": "Neue Cookies nach Ablehnen erkannt",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "gpc_privacy_domains_present",
"count": 1,
"title": "Datenschutzrelevante Kontakte trotz GPC-Signal",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "gpc_tracking_storage_hints",
"count": 1,
"title": "Tracking-Hinweise im Storage trotz GPC-Signal",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "gpc_third_party_cookies",
"count": 2,
"title": "Drittanbieter-Cookies trotz GPC-Signal",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "browser_storage_tracking_hints",
"title": "Tracking-Hinweise im Browser-Storage",
"public": true,
"category": "privacy",
"severity": "warning",
"storage_hints": [
"visitor"
]
},
{
"id": "many_browser_third_parties",
"title": "Viele Drittanbieter-Domains beim Laden",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "third_country_transfer_review",
"title": "Drittland-/US-Anbieter im Browseraufruf prüfen",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "unknown_vendor_jurisdiction",
"title": "Anbieter-Jurisdiktion nicht klar ableitbar",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "third_party_page_url_parameter",
"count": 4,
"title": "Seiten-URL wird in Drittanbieter-Requests übertragen",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "third_party_sensitive_query_leak",
"count": 2,
"title": "Sensible URL-Schlüssel im Drittanbieter-Kontext",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "browser_keystroke_listener_signals",
"count": 9,
"title": "Viele Tastatur-/Eingabe-Listener im Browser erkannt",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "consent_state_reject_evidence_failed",
"title": "Consent-Zustand: Ablehnen löst weiterhin Datenschutz-Signale aus",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "consent_state_gpc_evidence_review",
"title": "Consent-Zustand: GPC mit Tracking-Hinweisen",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "tracking_pixel_detected",
"count": 2,
"title": "Tracking-Pixel oder pixelnahe Requests erkannt",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"renderer": "playwright-chromium",
"final_url": "https://www.fotograf.de/",
"consent_ui": {
"accept_controls": [],
"accept_max_area": 0,
"reject_controls": [
{
"tag": "button",
"top": 594,
"area": 14606,
"left": 77,
"text": "Deny",
"color": "rgb(20, 20, 20)",
"width": 285,
"height": 51,
"background": "rgba(0, 0, 0, 0)",
"font_weight": "600"
}
],
"reject_max_area": 14606,
"settings_controls": [
{
"tag": "a",
"top": 547,
"area": 2792,
"left": 816,
"text": "Show details",
"color": "rgb(16, 50, 207)",
"width": 116,
"height": 24,
"background": "rgba(0, 0, 0, 0)",
"font_weight": "600"
},
{
"tag": "button",
"top": 594,
"area": 14606,
"left": 370,
"text": "Customize",
"color": "rgb(20, 20, 20)",
"width": 285,
"height": 51,
"background": "rgba(0, 0, 0, 0)",
"font_weight": "600"
}
],
"first_layer_summary": "Akzeptieren 0 / Ablehnen 1 / Einstellungen 2",
"cookie_context_found": true,
"reject_less_prominent": false,
"visible_control_count": 16,
"reject_prominence_ratio": 0
},
"gpc_signal": {
"error": "",
"enabled": true,
"storage": {
"total": 1,
"tracking_key_hints": [
"visitor"
],
"local_storage_total": 1,
"session_storage_total": 0
},
"cookie_count": 3,
"request_count": 120,
"sec_gpc_header": true,
"navigator_value": true,
"contacted_domains": [
{
"host": "fotograf.de",
"count": 99,
"category": "other",
"provider": "fotograf.de",
"third_party": false,
"category_label": "Sonstige",
"resource_types": {
"font": 4,
"image": 18,
"script": 35,
"document": 1,
"stylesheet": 41
}
},
{
"host": "fonts.gstatic.com",
"count": 7,
"category": "fonts",
"provider": "Google Fonts",
"third_party": true,
"category_label": "Schriften",
"resource_types": {
"font": 7
}
},
{
"host": "consent.cookiebot.com",
"count": 2,
"category": "other",
"provider": "consent.cookiebot.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"script": 2
}
},
{
"host": "consentcdn.cookiebot.com",
"count": 2,
"category": "other",
"provider": "consentcdn.cookiebot.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"xhr": 1,
"document": 1
}
},
{
"host": "dev.visualwebsiteoptimizer.com",
"count": 2,
"category": "other",
"provider": "dev.visualwebsiteoptimizer.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"xhr": 1,
"image": 1
}
},
{
"host": "fonts.googleapis.com",
"count": 2,
"category": "fonts",
"provider": "Google Fonts",
"third_party": true,
"category_label": "Schriften",
"resource_types": {
"stylesheet": 2
}
},
{
"host": "forms-na1.hsforms.com",
"count": 2,
"category": "other",
"provider": "forms-na1.hsforms.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"image": 2
}
},
{
"host": "js.hsforms.net",
"count": 2,
"category": "other",
"provider": "js.hsforms.net",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"script": 2
}
},
{
"host": "forms.hsforms.com",
"count": 1,
"category": "other",
"provider": "forms.hsforms.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"xhr": 1
}
},
{
"host": "googletagmanager.com",
"count": 1,
"category": "tag_manager",
"provider": "Google Tag Manager",
"third_party": true,
"category_label": "Tag-Manager",
"resource_types": {
"script": 1
}
}
],
"contacted_domain_count": 10,
"privacy_relevant_domains": [
{
"host": "googletagmanager.com",
"count": 1,
"category": "tag_manager",
"provider": "Google Tag Manager",
"third_party": true,
"category_label": "Tag-Manager",
"resource_types": {
"script": 1
}
}
],
"third_party_cookie_count": 2,
"third_party_domain_count": 9,
"privacy_relevant_domain_count": 1
},
"screenshot": {
"fit": "contain",
"width": 160,
"height": 150,
"source_width": 1024,
"source_height": 960,
"source_capture": "full_page",
"capture_version": "contain-v4-viewport-transparency-160x150"
},
"consent_apis": {
"cmpapi": false,
"tcfapi": false,
"onetrust": false,
"cookiebot": true,
"data_layer": true,
"cmp_detected": true,
"usercentrics": false,
"google_tag_data": true
},
"accept_signal": {
"error": "",
"enabled": false,
"storage": {
"total": 0,
"tracking_key_hints": [],
"local_storage_total": 0,
"session_storage_total": 0
},
"clicked_text": "",
"accept_clicked": false,
"accept_available": false,
"contacted_domains": [],
"contacted_domain_count": 0,
"new_domains_after_accept": [],
"privacy_relevant_domains": [],
"third_party_domain_count": 0,
"cookie_count_after_accept": 0,
"cookie_count_before_accept": 0,
"request_count_after_accept": 0,
"storage_count_after_accept": 0,
"request_count_before_accept": 0,
"new_cookie_count_after_accept": 0,
"privacy_relevant_domain_count": 0,
"new_request_count_after_accept": 0,
"third_party_cookie_count_after_accept": 0,
"storage_tracking_hint_count_after_accept": 0,
"new_privacy_relevant_domains_after_accept": [],
"new_privacy_relevant_domain_count_after_accept": 0
},
"request_count": 122,
"top_providers": [
{
"provider": "Google Fonts",
"request_count": 9
},
{
"provider": "consent.cookiebot.com",
"request_count": 3
},
{
"provider": "consentcdn.cookiebot.com",
"request_count": 3
},
{
"provider": "dev.visualwebsiteoptimizer.com",
"request_count": 2
},
{
"provider": "forms-na1.hsforms.com",
"request_count": 2
},
{
"provider": "js.hsforms.net",
"request_count": 2
},
{
"provider": "forms.hsforms.com",
"request_count": 1
},
{
"provider": "Google Tag Manager",
"request_count": 1
}
],
"request_samples": [
{
"host": "fonts.googleapis.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 1,
"query_keys": [
"family",
"display",
"ver"
],
"third_party": true,
"resource_type": "stylesheet",
"query_key_count": 3,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "js.hsforms.net",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "script",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "googletagmanager.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 1,
"query_keys": [
"id"
],
"third_party": true,
"resource_type": "script",
"query_key_count": 1,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "fonts.gstatic.com",
"method": "GET",
"referrer": {
"host": "fonts.googleapis.com",
"has_path": false,
"has_query": false,
"same_site": false,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "fonts.gstatic.com",
"method": "GET",
"referrer": {
"host": "fonts.googleapis.com",
"has_path": false,
"has_query": false,
"same_site": false,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "fonts.gstatic.com",
"method": "GET",
"referrer": {
"host": "fonts.googleapis.com",
"has_path": false,
"has_query": false,
"same_site": false,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "fonts.gstatic.com",
"method": "GET",
"referrer": {
"host": "fonts.googleapis.com",
"has_path": false,
"has_query": false,
"same_site": false,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "fonts.gstatic.com",
"method": "GET",
"referrer": {
"host": "fonts.googleapis.com",
"has_path": false,
"has_query": false,
"same_site": false,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "forms.hsforms.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 6,
"query_keys": [
"hs_static_app",
"hs_static_app_version",
"x-hubspot-static-app-info"
],
"third_party": true,
"resource_type": "xhr",
"query_key_count": 3,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "consent.cookiebot.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 1,
"query_keys": [
"cbid",
"implementation",
"consentmode-dataredaction",
"georegions"
],
"third_party": true,
"resource_type": "script",
"query_key_count": 4,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "dev.visualwebsiteoptimizer.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 1,
"query_keys": [
"a",
"u",
"vn",
"x"
],
"third_party": true,
"resource_type": "xhr",
"query_key_count": 4,
"url_value_param_count": 1,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 1
},
{
"host": "dev.visualwebsiteoptimizer.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 3,
"query_keys": [
"cd",
"a",
"d",
"u",
"h",
"t"
],
"third_party": true,
"resource_type": "image",
"query_key_count": 6,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 1
},
{
"host": "consentcdn.cookiebot.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "document",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "consentcdn.cookiebot.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 3,
"query_keys": [],
"third_party": true,
"resource_type": "xhr",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "consent.cookiebot.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 2,
"query_keys": [
"renew",
"referer",
"dnt",
"init",
"georegions"
],
"third_party": true,
"resource_type": "script",
"query_key_count": 5,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 1
},
{
"host": "js.hsforms.net",
"method": "GET",
"referrer": null,
"has_query": false,
"path_depth": 2,
"query_keys": [],
"third_party": true,
"resource_type": "script",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "forms-na1.hsforms.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 3,
"query_keys": [
"key",
"count"
],
"third_party": true,
"resource_type": "image",
"query_key_count": 2,
"url_value_param_count": 0,
"sensitive_query_key_count": 1,
"target_url_value_param_count": 0
},
{
"host": "fonts.googleapis.com",
"method": "GET",
"referrer": null,
"has_query": true,
"path_depth": 1,
"query_keys": [
"family",
"display"
],
"third_party": true,
"resource_type": "stylesheet",
"query_key_count": 2,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "fonts.gstatic.com",
"method": "GET",
"referrer": {
"host": "fonts.googleapis.com",
"has_path": false,
"has_query": false,
"same_site": false,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "fonts.gstatic.com",
"method": "GET",
"referrer": {
"host": "fonts.googleapis.com",
"has_path": false,
"has_query": false,
"same_site": false,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 4,
"query_keys": [],
"third_party": true,
"resource_type": "font",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
},
{
"host": "forms-na1.hsforms.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 3,
"query_keys": [
"key",
"count"
],
"third_party": true,
"resource_type": "image",
"query_key_count": 2,
"url_value_param_count": 0,
"sensitive_query_key_count": 1,
"target_url_value_param_count": 0
},
{
"host": "consent.cookiebot.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": true,
"path_depth": 1,
"query_keys": [
"action",
"nocache",
"cbid",
"cbt",
"method",
"hasdata",
"usercountry",
"referer",
"rc"
],
"third_party": true,
"resource_type": "script",
"query_key_count": 9,
"url_value_param_count": 1,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 1
},
{
"host": "consentcdn.cookiebot.com",
"method": "GET",
"referrer": {
"host": "fotograf.de",
"has_path": false,
"has_query": false,
"same_site": true,
"path_depth": 0,
"query_keys": [],
"sensitive_query_key_count": 0
},
"has_query": false,
"path_depth": 3,
"query_keys": [],
"third_party": true,
"resource_type": "script",
"query_key_count": 0,
"url_value_param_count": 0,
"sensitive_query_key_count": 0,
"target_url_value_param_count": 0
}
],
"cmp_consent_state": {
"tcf": {
"api_found": false,
"vendor_li": [],
"cmp_loaded": false,
"cmp_status": "",
"purpose_li": [],
"event_status": "",
"gdpr_applies": null,
"ping_success": false,
"policy_version": "",
"vendor_consents": [],
"vendor_li_count": 0,
"purpose_consents": [],
"purpose_li_count": 0,
"tc_string_length": 0,
"tc_string_present": false,
"vendor_consent_count": 0,
"purpose_consent_count": 0
},
"onetrust": {
"found": false,
"active_groups": [],
"active_group_count": 0
},
"cookiebot": {
"found": true,
"declined": false,
"consented": false,
"has_response": false,
"consent_marketing": false,
"consent_statistics": false,
"consent_preferences": false
},
"usercentrics": {
"found": false,
"has_response": false,
"services_count": 0,
"accepted_services_count": 0
}
},
"contacted_domains": [
{
"host": "fotograf.de",
"count": 99,
"category": "other",
"provider": "fotograf.de",
"third_party": false,
"category_label": "Sonstige",
"resource_types": {
"font": 4,
"image": 18,
"script": 35,
"document": 1,
"stylesheet": 41
}
},
{
"host": "fonts.gstatic.com",
"count": 7,
"category": "fonts",
"provider": "Google Fonts",
"third_party": true,
"category_label": "Schriften",
"resource_types": {
"font": 7
}
},
{
"host": "consent.cookiebot.com",
"count": 3,
"category": "other",
"provider": "consent.cookiebot.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"script": 3
}
},
{
"host": "consentcdn.cookiebot.com",
"count": 3,
"category": "other",
"provider": "consentcdn.cookiebot.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"xhr": 1,
"script": 1,
"document": 1
}
},
{
"host": "dev.visualwebsiteoptimizer.com",
"count": 2,
"category": "other",
"provider": "dev.visualwebsiteoptimizer.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"xhr": 1,
"image": 1
}
},
{
"host": "fonts.googleapis.com",
"count": 2,
"category": "fonts",
"provider": "Google Fonts",
"third_party": true,
"category_label": "Schriften",
"resource_types": {
"stylesheet": 2
}
},
{
"host": "forms-na1.hsforms.com",
"count": 2,
"category": "other",
"provider": "forms-na1.hsforms.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"image": 2
}
},
{
"host": "js.hsforms.net",
"count": 2,
"category": "other",
"provider": "js.hsforms.net",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"script": 2
}
},
{
"host": "forms.hsforms.com",
"count": 1,
"category": "other",
"provider": "forms.hsforms.com",
"third_party": true,
"category_label": "Sonstige",
"resource_types": {
"xhr": 1
}
},
{
"host": "googletagmanager.com",
"count": 1,
"category": "tag_manager",
"provider": "Google Tag Manager",
"third_party": true,
"category_label": "Tag-Manager",
"resource_types": {
"script": 1
}
}
],
"privacy_api_metrics": {
"api_calls": {
"mutation_observer_count": 5,
"keyboard_input_listener_count": 9
},
"beacon_count": 0,
"webgl_read_count": 0,
"canvas_read_count": 0,
"audio_context_count": 0,
"canvas_export_count": 0,
"fetch_keepalive_count": 0,
"webgl_parameter_count": 0,
"mutation_observer_count": 5,
"keyboard_input_listener_count": 9
},
"tcf_consent_analysis": {
"color": "green",
"score": 100,
"status": "unauffällig",
"summary": "TCF-Decoder: 0 Zweck(e) mit Consent/LI-Signal, 0 Vendor-Consent(s), 0 Vendor-LI-Signal(e).",
"findings": [],
"api_found": false,
"available": false,
"cmp_loaded": false,
"cmp_status": "",
"event_status": "",
"gdpr_applies": null,
"ping_success": false,
"purpose_rows": [
{
"id": 1,
"label": "Informationen auf einem Gerät speichern und/oder abrufen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 2,
"label": "Einfache Anzeigen auswählen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 3,
"label": "Personalisiertes Anzeigen-Profil erstellen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 4,
"label": "Personalisierte Anzeigen auswählen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 5,
"label": "Personalisiertes Inhalts-Profil erstellen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 6,
"label": "Personalisierte Inhalte auswählen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 7,
"label": "Anzeigen-Leistung messen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 8,
"label": "Inhalte-Leistung messen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 9,
"label": "Marktforschung zur Generierung von Erkenntnissen nutzen",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 10,
"label": "Produkte entwickeln und verbessern",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
},
{
"id": 11,
"label": "Begrenzte Daten zur Anzeigen-Auswahl verwenden",
"status": "nicht_erlaubt",
"risk_level": "niedrig",
"consent_granted": false,
"legitimate_interest_granted": false
}
],
"vendor_li_ids": [],
"policy_version": "",
"vendor_li_count": 0,
"purpose_li_count": 0,
"tc_string_length": 0,
"tc_string_present": false,
"vendor_consent_ids": [],
"granted_purpose_rows": [],
"vendor_consent_count": 0,
"purpose_consent_count": 0,
"high_risk_purpose_count": 0,
"medium_risk_purpose_count": 0
},
"viewport_transparency": {
"samples": [
{
"tag": "a",
"top": 314,
"href": "https://www.cookiebot.com/en/what-is-behind-powered-by-cookiebot/?utm_source=banner_cb&utm_medium=referral&utm_content=v",
"left": 772,
"text": "Cookiebot by Usercentrics - opens in a new window",
"width": 175,
"height": 30,
"category": "cookie_consent"
}
],
"available": true,
"sample_count": 1,
"claim_boundary": "Sichtbarkeits-Evidence aus dem ersten Headless-Chromium-Viewport; keine Aussage ueber Footer nach Scrollen, Loginbereiche oder rechtliche Vollstaendigkeit.",
"viewport_width": 1024,
"category_counts": {
"cookie_consent": 1
},
"contact_visible": false,
"imprint_visible": false,
"viewport_height": 960,
"cookie_consent_visible": true,
"privacy_notice_visible": false
},
"consent_journey_matrix": {
"color": "green",
"items": [
{
"host": "googletagmanager.com",
"states": {
"gpc": 1,
"default": 1
},
"category": "tag_manager",
"provider": "Google Tag Manager",
"category_label": "Tag-Manager",
"privacy_relevant": true,
"total_request_count": 2
},
{
"host": "consent.cookiebot.com",
"states": {
"gpc": 2,
"default": 3,
"reject_new": 1
},
"category": "other",
"provider": "consent.cookiebot.com",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 6
},
{
"host": "consentcdn.cookiebot.com",
"states": {
"gpc": 2,
"default": 3,
"reject_new": 1
},
"category": "other",
"provider": "consentcdn.cookiebot.com",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 6
},
{
"host": "fonts.gstatic.com",
"states": {
"gpc": 7,
"default": 7
},
"category": "fonts",
"provider": "Google Fonts",
"category_label": "Schriften",
"privacy_relevant": false,
"total_request_count": 14
},
{
"host": "fonts.googleapis.com",
"states": {
"gpc": 2,
"default": 2
},
"category": "fonts",
"provider": "Google Fonts",
"category_label": "Schriften",
"privacy_relevant": false,
"total_request_count": 4
},
{
"host": "dev.visualwebsiteoptimizer.com",
"states": {
"gpc": 2,
"default": 2
},
"category": "other",
"provider": "dev.visualwebsiteoptimizer.com",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 4
},
{
"host": "forms-na1.hsforms.com",
"states": {
"gpc": 2,
"default": 2
},
"category": "other",
"provider": "forms-na1.hsforms.com",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 4
},
{
"host": "js.hsforms.net",
"states": {
"gpc": 2,
"default": 2
},
"category": "other",
"provider": "js.hsforms.net",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 4
},
{
"host": "forms.hsforms.com",
"states": {
"gpc": 1,
"default": 1
},
"category": "other",
"provider": "forms.hsforms.com",
"category_label": "Sonstige",
"privacy_relevant": false,
"total_request_count": 2
}
],
"score": 92,
"states": [
{
"id": "default",
"label": "Erstaufruf",
"description": "Kontakte ohne Nutzeraktion",
"domain_count": 9,
"request_count": 23,
"privacy_relevant_domain_count": 1
},
{
"id": "reject_new",
"label": "Nach Ablehnen neu",
"description": "Neue Kontakte nach Ablehnen-Klick",
"domain_count": 2,
"request_count": 2,
"privacy_relevant_domain_count": 0
},
{
"id": "accept_new",
"label": "Nach Akzeptieren neu",
"description": "Neue Kontakte nach Akzeptieren-Klick",
"domain_count": 0,
"request_count": 0,
"privacy_relevant_domain_count": 0
},
{
"id": "gpc",
"label": "GPC-Aufruf",
"description": "Kontakte bei Global Privacy Control",
"domain_count": 9,
"request_count": 21,
"privacy_relevant_domain_count": 1
}
],
"status": "unauffällig",
"summary": "Consent-Journey: 0 neue Datenschutz-Domain(s) nach Ablehnen, 0 nach Akzeptieren, 1 im GPC-Aufruf.",
"gpc_privacy_relevant_domain_count": 1,
"accept_privacy_relevant_domain_count": 0,
"reject_privacy_relevant_domain_count": 0
},
"consent_state_evidence": {
"rows": [
{
"id": "default",
"label": "Erstaufruf",
"status": "ohne Nutzeraktion",
"evidence": "Baseline aus erstem Chromium-Aufruf ohne Banner-Interaktion.",
"risk_level": "mittel",
"cookie_count": 3,
"domain_count": 10,
"request_count": 122,
"storage_total": 1,
"new_cookie_count": 3,
"third_party_cookie_count": 0,
"storage_tracking_hint_count": 1,
"privacy_relevant_domain_count": 1
},
{
"id": "reject",
"label": "Nach Ablehnen",
"status": "geklickt",
"evidence": "Deny",
"risk_level": "hoch",
"cookie_count": 3,
"domain_count": 2,
"request_count": 122,
"storage_total": 0,
"new_cookie_count": 1,
"third_party_cookie_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"id": "accept",
"label": "Nach Akzeptieren",
"status": "nicht ausgeführt",
"evidence": "",
"risk_level": "niedrig",
"cookie_count": 0,
"domain_count": 0,
"request_count": 0,
"storage_total": 0,
"new_cookie_count": 0,
"third_party_cookie_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"id": "gpc",
"label": "GPC-Aufruf",
"status": "aktiv",
"evidence": "Navigator-GPC und Sec-GPC wurden im gesonderten Browserlauf gesetzt.",
"risk_level": "mittel",
"cookie_count": 3,
"domain_count": 10,
"request_count": 120,
"storage_total": 1,
"new_cookie_count": 0,
"third_party_cookie_count": 2,
"storage_tracking_hint_count": 1,
"privacy_relevant_domain_count": 1
}
],
"color": "orange",
"score": 50,
"status": "auffällig",
"summary": "Consent-State-Evidence: 4 Zustände verglichen, 1 hoch auffällig, 2 mittel auffällig.",
"findings": [
{
"id": "consent_state_reject_evidence_failed",
"title": "Consent-Zustand: Ablehnen löst weiterhin Datenschutz-Signale aus",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "consent_state_gpc_evidence_review",
"title": "Consent-Zustand: GPC mit Tracking-Hinweisen",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"available": true,
"high_count": 1,
"medium_count": 2
},
"contacted_domain_count": 10,
"fingerprinting_analysis": {
"color": "green",
"score": 90,
"checks": [
{
"id": "canvas",
"ok": true,
"count": 0,
"label": "Canvas-Auslese",
"detail": "0 Pixel-Lesezugriff(e), 0 Export(e)."
},
{
"id": "webgl",
"ok": true,
"count": 0,
"label": "WebGL-Merkmale",
"detail": "0 Parameterzugriff(e), 0 Pixel-Lesezugriff(e)."
},
{
"id": "audio",
"ok": true,
"count": 0,
"label": "AudioContext",
"detail": "0 AudioContext/OfflineAudioContext-Aufruf(e)."
},
{
"id": "session_replay",
"ok": true,
"count": 0,
"label": "Session-Replay-Anbieter",
"detail": "Keine bekannten Anbieter erkannt."
},
{
"id": "input_listeners",
"ok": false,
"count": 9,
"label": "Tastatur-/Eingabe-Listener",
"detail": "9 Tastatur-/Input-Listener, 220 Interaktions-Listener, 5 MutationObserver."
}
],
"status": "unauffällig",
"metrics": {
"webgl_read_count": 0,
"canvas_read_count": 0,
"audio_context_count": 0,
"canvas_export_count": 0,
"webgl_parameter_count": 0,
"mutation_observer_count": 5,
"keyboard_input_listener_count": 9
},
"summary": "1 Fingerprinting-/Session-Replay-Hinweis(e) aus dem Browserlauf.",
"findings": [
{
"id": "browser_keystroke_listener_signals",
"count": 9,
"title": "Viele Tastatur-/Eingabe-Listener im Browser erkannt",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"finding_count": 1,
"session_replay_domains": []
},
"privacy_relevant_domains": [
{
"host": "googletagmanager.com",
"count": 1,
"category": "tag_manager",
"provider": "Google Tag Manager",
"third_party": true,
"category_label": "Tag-Manager",
"resource_types": {
"script": 1
}
}
],
"provider_category_counts": {
"fonts": 2,
"other": 6,
"tag_manager": 1
},
"provider_category_labels": {
"fonts": "Schriften",
"other": "other",
"tag_manager": "Tag-Manager"
},
"third_party_domain_count": 9,
"embedded_content_analysis": {
"color": "green",
"items": [],
"score": 100,
"status": "unauffällig",
"summary": "0 externe Embed-/Widget-Dienst(e), 0 davon im ersten Browseraufruf geladen.",
"findings": [],
"map_count": 0,
"total_count": 0,
"video_count": 0,
"captcha_count": 0,
"category_counts": [],
"social_widget_count": 0,
"loaded_pre_consent_count": 0,
"request_count_by_provider": []
},
"referrer_leakage_analysis": {
"color": "red",
"items": [
{
"host": "forms-na1.hsforms.com",
"category": "other",
"provider": "forms-na1.hsforms.com",
"query_keys": [
"key",
"count"
],
"risk_reason": "sensibler Query-Schlüssel im Drittanbieter-Request oder Referrer",
"resource_type": "image",
"category_label": "Sonstige",
"referrer_query_keys": [],
"sensitive_query_key_count": 1,
"referrer_sensitive_query_key_count": 0
},
{
"host": "forms-na1.hsforms.com",
"category": "other",
"provider": "forms-na1.hsforms.com",
"query_keys": [
"key",
"count"
],
"risk_reason": "sensibler Query-Schlüssel im Drittanbieter-Request oder Referrer",
"resource_type": "image",
"category_label": "Sonstige",
"referrer_query_keys": [],
"sensitive_query_key_count": 1,
"referrer_sensitive_query_key_count": 0
},
{
"host": "dev.visualwebsiteoptimizer.com",
"category": "other",
"provider": "dev.visualwebsiteoptimizer.com",
"query_keys": [
"a",
"u",
"vn",
"x"
],
"risk_reason": "Seiten-URL oder URL-Wert in Drittanbieter-Requestparametern",
"resource_type": "xhr",
"category_label": "Sonstige",
"referrer_query_keys": [],
"url_value_param_count": 1,
"target_url_value_param_count": 1
},
{
"host": "dev.visualwebsiteoptimizer.com",
"category": "other",
"provider": "dev.visualwebsiteoptimizer.com",
"query_keys": [
"cd",
"a",
"d",
"u",
"h",
"t"
],
"risk_reason": "Seiten-URL oder URL-Wert in Drittanbieter-Requestparametern",
"resource_type": "image",
"category_label": "Sonstige",
"referrer_query_keys": [],
"url_value_param_count": 0,
"target_url_value_param_count": 1
},
{
"host": "consent.cookiebot.com",
"category": "other",
"provider": "consent.cookiebot.com",
"query_keys": [
"renew",
"referer",
"dnt",
"init",
"georegions"
],
"risk_reason": "Seiten-URL oder URL-Wert in Drittanbieter-Requestparametern",
"resource_type": "script",
"category_label": "Sonstige",
"referrer_query_keys": [],
"url_value_param_count": 0,
"target_url_value_param_count": 1
},
{
"host": "consent.cookiebot.com",
"category": "other",
"provider": "consent.cookiebot.com",
"query_keys": [
"action",
"nocache",
"cbid",
"cbt",
"method",
"hasdata",
"usercountry",
"referer"
],
"risk_reason": "Seiten-URL oder URL-Wert in Drittanbieter-Requestparametern",
"resource_type": "script",
"category_label": "Sonstige",
"referrer_query_keys": [],
"url_value_param_count": 1,
"target_url_value_param_count": 1
}
],
"score": 20,
"status": "kritisch",
"summary": "3 Drittanbieter-Domain(s) mit Referrer-/URL-Leak-Prüfbedarf, 2 sensible Query-Kontexte.",
"findings": [
{
"id": "third_party_page_url_parameter",
"count": 4,
"title": "Seiten-URL wird in Drittanbieter-Requests übertragen",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "third_party_sensitive_query_leak",
"count": 2,
"title": "Sensible URL-Schlüssel im Drittanbieter-Kontext",
"public": true,
"category": "privacy",
"severity": "warning"
}
],
"sample_count": 23,
"full_referrer_count": 0,
"page_url_param_count": 4,
"affected_domain_count": 3,
"sensitive_query_count": 2
},
"third_party_contact_matrix": {
"color": "orange",
"items": [
{
"host": "googletagmanager.com",
"region": "US",
"status": "dokumentieren",
"category": "tag_manager",
"provider": "Google Tag Manager",
"risk_level": "mittel",
"request_count": 1,
"transfer_risk": "hoch",
"category_label": "Tag-Manager",
"resource_types": [
{
"type": "script",
"count": 1
}
],
"transfer_label": "Drittland/USA",
"privacy_relevant": true
},
{
"host": "fonts.gstatic.com",
"region": "US",
"status": "dokumentieren",
"category": "fonts",
"provider": "Google Fonts",
"risk_level": "mittel",
"request_count": 7,
"transfer_risk": "hoch",
"category_label": "Schriften",
"resource_types": [
{
"type": "font",
"count": 7
}
],
"transfer_label": "Drittland/USA",
"privacy_relevant": false
},
{
"host": "consent.cookiebot.com",
"region": "unbekannt",
"status": "prüfen",
"category": "other",
"provider": "consent.cookiebot.com",
"risk_level": "niedrig",
"request_count": 3,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"resource_types": [
{
"type": "script",
"count": 3
}
],
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "consentcdn.cookiebot.com",
"region": "unbekannt",
"status": "prüfen",
"category": "other",
"provider": "consentcdn.cookiebot.com",
"risk_level": "niedrig",
"request_count": 3,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"resource_types": [
{
"type": "document",
"count": 1
},
{
"type": "script",
"count": 1
},
{
"type": "xhr",
"count": 1
}
],
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "fonts.googleapis.com",
"region": "US",
"status": "dokumentieren",
"category": "fonts",
"provider": "Google Fonts",
"risk_level": "mittel",
"request_count": 2,
"transfer_risk": "hoch",
"category_label": "Schriften",
"resource_types": [
{
"type": "stylesheet",
"count": 2
}
],
"transfer_label": "Drittland/USA",
"privacy_relevant": false
},
{
"host": "dev.visualwebsiteoptimizer.com",
"region": "unbekannt",
"status": "prüfen",
"category": "other",
"provider": "dev.visualwebsiteoptimizer.com",
"risk_level": "niedrig",
"request_count": 2,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"resource_types": [
{
"type": "image",
"count": 1
},
{
"type": "xhr",
"count": 1
}
],
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "forms-na1.hsforms.com",
"region": "unbekannt",
"status": "prüfen",
"category": "other",
"provider": "forms-na1.hsforms.com",
"risk_level": "niedrig",
"request_count": 2,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"resource_types": [
{
"type": "image",
"count": 2
}
],
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "js.hsforms.net",
"region": "unbekannt",
"status": "prüfen",
"category": "other",
"provider": "js.hsforms.net",
"risk_level": "niedrig",
"request_count": 2,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"resource_types": [
{
"type": "script",
"count": 2
}
],
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "forms.hsforms.com",
"region": "unbekannt",
"status": "prüfen",
"category": "other",
"provider": "forms.hsforms.com",
"risk_level": "niedrig",
"request_count": 1,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"resource_types": [
{
"type": "xhr",
"count": 1
}
],
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
}
],
"score": 59,
"status": "auffällig",
"summary": "9 Drittanbieter-Domain(s) beim ersten Browseraufruf, davon 1 datenschutzrelevant.",
"category_counts": {
"Sonstige": 6,
"Schriften": 2,
"Tag-Manager": 1
},
"total_domain_count": 9,
"total_request_count": 23,
"privacy_relevant_count": 1,
"transfer_risk_analysis": {
"color": "red",
"items": [
{
"host": "googletagmanager.com",
"region": "US",
"provider": "Google Tag Manager",
"request_count": 1,
"transfer_risk": "hoch",
"category_label": "Tag-Manager",
"transfer_label": "Drittland/USA",
"privacy_relevant": true
},
{
"host": "fonts.gstatic.com",
"region": "US",
"provider": "Google Fonts",
"request_count": 7,
"transfer_risk": "hoch",
"category_label": "Schriften",
"transfer_label": "Drittland/USA",
"privacy_relevant": false
},
{
"host": "consent.cookiebot.com",
"region": "unbekannt",
"provider": "consent.cookiebot.com",
"request_count": 3,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "consentcdn.cookiebot.com",
"region": "unbekannt",
"provider": "consentcdn.cookiebot.com",
"request_count": 3,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "fonts.googleapis.com",
"region": "US",
"provider": "Google Fonts",
"request_count": 2,
"transfer_risk": "hoch",
"category_label": "Schriften",
"transfer_label": "Drittland/USA",
"privacy_relevant": false
},
{
"host": "dev.visualwebsiteoptimizer.com",
"region": "unbekannt",
"provider": "dev.visualwebsiteoptimizer.com",
"request_count": 2,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "forms-na1.hsforms.com",
"region": "unbekannt",
"provider": "forms-na1.hsforms.com",
"request_count": 2,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "js.hsforms.net",
"region": "unbekannt",
"provider": "js.hsforms.net",
"request_count": 2,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
},
{
"host": "forms.hsforms.com",
"region": "unbekannt",
"provider": "forms.hsforms.com",
"request_count": 1,
"transfer_risk": "mittel",
"category_label": "Sonstige",
"transfer_label": "Jurisdiktion unklar",
"privacy_relevant": false
}
],
"score": 31,
"status": "kritisch",
"summary": "9 Drittanbieter für Transfer-/Jurisdiktionsprüfung, 3 mit hohem Prüfbedarf, 6 unklar.",
"findings": [
{
"id": "third_country_transfer_review",
"title": "Drittland-/US-Anbieter im Browseraufruf prüfen",
"public": true,
"category": "privacy",
"severity": "warning"
},
{
"id": "unknown_vendor_jurisdiction",
"title": "Anbieter-Jurisdiktion nicht klar ableitbar",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"unknown_count": 6,
"high_risk_count": 3,
"total_vendor_count": 9,
"third_country_count": 3
}
},
"privacy_relevant_domain_count": 1,
"tracking_pixel_beacon_analysis": {
"color": "yellow",
"items": [
{
"url": "",
"host": "dev.visualwebsiteoptimizer.com",
"kind": "browser_tracking_request",
"reason": "image-Request mit 6 Query-Schlüssel(n).",
"source": "chromium_request",
"category": "other",
"provider": "dev.visualwebsiteoptimizer.com",
"query_keys": [
"cd",
"a",
"d",
"u",
"h",
"t"
],
"third_party": true,
"resource_type": "image",
"category_label": "Sonstige"
},
{
"url": "",
"host": "forms-na1.hsforms.com",
"kind": "browser_tracking_request",
"reason": "image-Request mit 2 Query-Schlüssel(n).",
"source": "chromium_request",
"category": "other",
"provider": "forms-na1.hsforms.com",
"query_keys": [
"key",
"count"
],
"third_party": true,
"resource_type": "image",
"category_label": "Sonstige"
}
],
"score": 80,
"status": "prüfen",
"summary": "2 Pixel-/Bildtracking-Hinweis(e), 0 Beacon-/Telemetry-Hinweis(e), 0 Link-Ping(s).",
"findings": [
{
"id": "tracking_pixel_detected",
"count": 2,
"title": "Tracking-Pixel oder pixelnahe Requests erkannt",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"pixel_count": 2,
"link_ping_count": 0,
"telemetry_count": 0,
"beacon_api_count": 0,
"third_party_count": 2,
"fetch_keepalive_count": 0,
"privacy_relevant_count": 0,
"beacon_code_reference_count": 0,
"fetch_keepalive_reference_count": 0
}
},
"privacy_analysis": {
"cookies": {
"items": [],
"total": 0,
"tracking": [],
"pre_consent": [],
"missing_secure": [],
"missing_samesite": [],
"pre_consent_tracking": [],
"pre_consent_nonessential": []
},
"findings": [],
"tracking_ids": [
{
"type": "google_tag_manager",
"value": "GTM-MPQRLZB",
"provider": "Google Tag Manager"
}
],
"tracking_scripts": [],
"consent_hint_found": false,
"privacy_policy_hint_found": true
},
"consent_audit": {
"color": "orange",
"score": 61,
"checks": [
{
"id": "banner_visible",
"ok": true,
"label": "Cookie-/Consent-Hinweis sichtbar",
"detail": "Ein Hinweis mit Cookie-/Einwilligungsbezug wurde im sichtbaren Text erkannt."
},
{
"id": "reject_visible",
"ok": true,
"label": "Ablehnen gleichwertig erreichbar",
"detail": "Ablehnen oder nur notwendige Cookies wurde im Text oder Browser erkannt. Browser-Buttons: 1."
},
{
"id": "settings_visible",
"ok": true,
"label": "Einstellungen oder Auswahl vorhanden",
"detail": "Eine Einstellungs- oder Auswahlmoeglichkeit wurde im Text oder Browser erkannt. Browser-Buttons: 2."
},
{
"id": "browser_reject_visible",
"ok": true,
"label": "Ablehnen im sichtbaren Banner",
"detail": "Sichtbare Banner-Controls: Akzeptieren 0, Ablehnen 1, Einstellungen 2."
},
{
"id": "browser_settings_visible",
"ok": true,
"label": "Einstellungen im sichtbaren Banner",
"detail": "Sichtbare Banner-Controls: Akzeptieren 0, Ablehnen 1, Einstellungen 2."
},
{
"id": "reject_equally_prominent",
"ok": true,
"label": "Ablehnen nicht deutlich schwaecher dargestellt",
"detail": "Groessen-Verhältnis Ablehnen/Akzeptieren: nicht messbar."
},
{
"id": "reject_button_clickable",
"ok": true,
"label": "Ablehnen technisch klickbar",
"detail": "Wenn ein Ablehnen-Button sichtbar ist, klickt SaferPage ihn im Chromium-Browser einmal an."
},
{
"id": "no_new_cookies_after_reject",
"ok": false,
"label": "Keine neuen Cookies nach Ablehnen",
"detail": "1 neue Cookie(s) nach dem Ablehnen-Klick."
},
{
"id": "no_tracking_storage_after_reject",
"ok": true,
"label": "Kein Tracking-Storage nach Ablehnen",
"detail": "0 Tracking-Hinweis(e) im Web Storage nach Ablehnen."
},
{
"id": "no_privacy_domains_after_reject",
"ok": true,
"label": "Keine neuen Tracking-Kontakte nach Ablehnen",
"detail": "0 neue datenschutzrelevante Domain(s) nach Ablehnen."
},
{
"id": "gpc_signal_respected",
"ok": false,
"label": "GPC-Signal ohne Tracking-Hinweise",
"detail": "GPC-Aufruf: 1 datenschutzrelevante Domain(s), 2 Drittanbieter-Cookie(s), 1 Storage-Hinweis(e)."
},
{
"id": "no_tracking_cookies_before_consent",
"ok": true,
"label": "Keine Tracking-Cookies vor Einwilligung",
"detail": "0 Tracking-Cookie(s) im Erstaufruf."
},
{
"id": "no_nonessential_cookies_before_consent",
"ok": false,
"label": "Keine nicht notwendigen Cookies vor Einwilligung",
"detail": "2 moeglicherweise nicht notwendige Cookie(s) im Erstaufruf."
},
{
"id": "google_default_restrictive",
"ok": true,
"label": "Google Consent Default restriktiv",
"detail": "Google-Tags brauchen vor dem ersten Laden restriktive Consent-Defaults."
},
{
"id": "third_parties_explained",
"ok": true,
"label": "Drittanbieter begrenzt und erklaerbar",
"detail": "0 datenschutzrelevante Drittanbieter-Domain(s), 9 Drittanbieter insgesamt."
},
{
"id": "storage_without_tracking_hints",
"ok": false,
"label": "Web Storage ohne Tracking-Hinweise",
"detail": "1 Storage-Key(s), 1 Tracking-Hinweis(e)."
},
{
"id": "cmp_api_detected_when_needed",
"ok": true,
"label": "CMP-/TCF-Signal bei Tracking erkennbar",
"detail": "Gängige CMP-/TCF-Indikatoren: __tcfapi, __cmp, Cookiebot, OneTrust oder Usercentrics."
},
{
"id": "accept_click_documented",
"ok": true,
"label": "Akzeptieren-Klick nachvollziehbar",
"detail": "Accept-Test: nicht ausgefuehrt, neue Requests 0, neue Cookies 0, neue Datenschutz-Domains 0."
},
{
"id": "cmp_state_readable",
"ok": true,
"label": "CMP-/TCF-Zustand auslesbar",
"detail": "TCF TC-String: nein, Cookiebot: ja, OneTrust: nein, Usercentrics: nein."
},
{
"id": "cmp_default_restrictive",
"ok": true,
"label": "CMP-Default wirkt restriktiv",
"detail": "TCF Purposes erlaubt: 0, TCF Vendors erlaubt: 0, Cookiebot Statistik/Marketing: nein."
}
],
"status": "auffällig",
"summary": "Consent ist teilweise erkennbar; einzelne Punkte bleiben Betreiberkontext.",
"evidence": [
"2 Cookie(s) beim ersten Aufruf aus HTTP-Headern und Chromium",
"0 Tracking-Script(s) im HTML",
"0 datenschutzrelevante Drittanbieter-Domain(s)",
"1 Storage-Key(s), 1 Tracking-Hinweis(e)",
"Consent-Banner-Controls: Akzeptieren 0, Ablehnen 1, Einstellungen 2",
"Ablehnen/Akzeptieren-Prominenz: nicht messbar",
"Reject-Test: geklickt, neue Cookies 1, Tracking-Storage 0, neue Datenschutz-Domains 0",
"Accept-Test: nicht ausgefuehrt, neue Requests 0, neue Cookies 0, neue Datenschutz-Domains 0, Drittanbieter-Cookies 0",
"CMP-State: TCF-String nein, TCF Purposes 0, TCF Vendors 0, Cookiebot ja, OneTrust-Gruppen 0, Usercentrics-Services 0",
"GPC-Test: aktiv, Datenschutz-Domains 1, Drittanbieter-Cookies 2, Storage-Hinweise 1",
"CMP-/TCF-Signal: ja",
"Google Consent Default: ja"
],
"gpc_enabled": true,
"cmp_detected": true,
"blocking_plan": {
"items": [
{
"kind": "storage",
"level": "hoch",
"source": "localStorage",
"target": "isReturningVisitor",
"recipes": [
{
"tool": "Google Tag Manager"
},
{
"tool": "Usercentrics"
},
{
"tool": "Developer-Fallback"
}
],
"category": "tracking",
"evidence": "localStorage · Tracking/Analytics · dauerhaft bis Löschung durch Nutzer/Browser",
"category_label": "tracking"
},
{
"kind": "third_party_request",
"level": "hoch",
"source": "Google Tag Manager",
"target": "googletagmanager.com",
"recipes": [
{
"tool": "Google Tag Manager"
},
{
"tool": "Cookiebot"
},
{
"tool": "Usercentrics"
},
{
"tool": "OneTrust"
},
{
"tool": "Developer-Fallback"
}
],
"category": "tag_manager",
"evidence": "1 Request(s) im Erstaufruf · Tag-Manager",
"category_label": "Tag-Manager"
},
{
"kind": "cookie",
"level": "mittel",
"source": "hsforms.com",
"target": "__cf_bm",
"recipes": [
{
"tool": "Google Tag Manager"
},
{
"tool": "Cookiebot"
},
{
"tool": "Usercentrics"
},
{
"tool": "OneTrust"
},
{
"tool": "Developer-Fallback"
}
],
"category": "unknown",
"evidence": "vor Consent gesetzt · hsforms.com · kurz (0 Tage)",
"category_label": "Unklar"
},
{
"kind": "cookie",
"level": "mittel",
"source": "fotograf.de",
"target": "_vwo_uuid_v2",
"recipes": [
{
"tool": "Google Tag Manager"
},
{
"tool": "Cookiebot"
},
{
"tool": "Usercentrics"
},
{
"tool": "OneTrust"
},
{
"tool": "Developer-Fallback"
}
],
"category": "unknown",
"evidence": "vor Consent gesetzt · fotograf.de · lang (365 Tage)",
"category_label": "Unklar"
}
],
"summary": "4 Blockier-/Consent-Maßnahme(n) abgeleitet: 2 hoch, 2 mittel.",
"available": true,
"high_count": 2,
"total_count": 4,
"type_counts": {
"cookie": 2,
"storage": 1,
"third_party_request": 1
},
"medium_count": 2
},
"tcf_api_found": false,
"cookiebot_found": true,
"accept_test_enabled": false,
"browser_cookie_count": 3,
"accept_button_clicked": false,
"browser_storage_count": 1,
"reject_button_clicked": true,
"reject_less_prominent": false,
"tcf_tc_string_present": false,
"tracking_script_count": 0,
"accept_button_available": false,
"reject_button_available": true,
"reject_prominence_ratio": 0,
"pre_consent_cookie_count": 2,
"pre_consent_cookie_names": [
"_vwo_uuid_v2",
"__cf_bm"
],
"tcf_vendor_consent_count": 0,
"third_party_domain_count": 9,
"tcf_purpose_consent_count": 0,
"onetrust_active_group_count": 0,
"usercentrics_services_count": 0,
"browser_accept_control_count": 0,
"browser_cookie_context_found": true,
"browser_reject_control_count": 1,
"gpc_third_party_cookie_count": 2,
"post_accept_new_cookie_count": 0,
"post_reject_new_cookie_count": 1,
"post_accept_new_request_count": 0,
"browser_settings_control_count": 2,
"gpc_storage_tracking_hint_count": 1,
"cookiebot_marketing_or_statistics": false,
"gpc_privacy_relevant_domain_count": 1,
"pre_consent_tracking_cookie_count": 0,
"pre_consent_tracking_cookie_names": [],
"privacy_relevant_third_party_count": 0,
"browser_storage_tracking_hint_count": 1,
"post_accept_third_party_cookie_count": 0,
"pre_consent_nonessential_cookie_count": 2,
"pre_consent_nonessential_cookie_names": [
"_vwo_uuid_v2",
"__cf_bm"
],
"post_accept_storage_tracking_hint_count": 0,
"post_reject_storage_tracking_hint_count": 0,
"post_accept_privacy_relevant_domain_count": 0,
"post_reject_privacy_relevant_domain_count": 0
},
"cookie_inventory": {
"color": "yellow",
"items": [
{
"name": "_vwo_uuid_v2",
"domain": "fotograf.de",
"secure": false,
"sources": [
"browser_first_load"
],
"category": "unknown",
"provider": "fotograf.de",
"tracking": false,
"http_only": false,
"same_site": "Lax",
"expires_at": "2027-06-20T06:51:40+00:00",
"long_lived": true,
"persistent": true,
"first_party": true,
"origin_host": "fotograf.de",
"pre_consent": true,
"source_label": "Chromium-Erstaufruf",
"category_label": "Unklar",
"retention_risk": "mittel",
"expires_in_days": 365,
"origin_evidence": "99 Browser-Request(s) · document:1, font:4, image:18, script:35",
"origin_provider": "fotograf.de",
"retention_class": "long",
"retention_label": "lang (365 Tage)",
"likely_essential": false,
"origin_script_url": "",
"origin_resource_type": ""
},
{
"name": "__cf_bm",
"domain": "hsforms.com",
"secure": true,
"sources": [
"browser_first_load"
],
"category": "unknown",
"provider": "hsforms.com",
"tracking": false,
"http_only": true,
"same_site": "None",
"expires_at": "2026-06-19T07:21:41+00:00",
"long_lived": false,
"persistent": true,
"first_party": false,
"origin_host": "hsforms.com",
"pre_consent": true,
"source_label": "Chromium-Erstaufruf",
"category_label": "Unklar",
"retention_risk": "niedrig",
"expires_in_days": 0,
"origin_evidence": "Cookie-Domain ist Drittanbieter; konkreter Request wurde im Sample nicht eindeutig zugeordnet.",
"origin_provider": "hsforms.com",
"retention_class": "short",
"retention_label": "kurz (0 Tage)",
"likely_essential": false,
"origin_script_url": "",
"origin_resource_type": ""
},
{
"name": "__cf_bm",
"domain": "hsforms.net",
"secure": true,
"sources": [
"browser_first_load"
],
"category": "unknown",
"provider": "hsforms.net",
"tracking": false,
"http_only": true,
"same_site": "None",
"expires_at": "2026-06-19T07:21:40+00:00",
"long_lived": false,
"persistent": true,
"first_party": false,
"origin_host": "hsforms.net",
"pre_consent": true,
"source_label": "Chromium-Erstaufruf",
"category_label": "Unklar",
"retention_risk": "niedrig",
"expires_in_days": 0,
"origin_evidence": "Cookie-Domain ist Drittanbieter; konkreter Request wurde im Sample nicht eindeutig zugeordnet.",
"origin_provider": "hsforms.net",
"retention_class": "short",
"retention_label": "kurz (0 Tage)",
"likely_essential": false,
"origin_script_url": "",
"origin_resource_type": ""
}
],
"score": 76,
"total": 3,
"status": "prüfen",
"summary": "3 Cookie(s) inventarisiert: 0 Tracking-/Werbe-Cookie(s), 2 Drittanbieter-Cookie(s), 1 langlebige Cookie(s), 0 sehr lange Laufzeit(en).",
"findings": [
{
"id": "long_lived_cookie",
"count": 1,
"title": "Langlebige Cookies erkannt",
"public": true,
"category": "privacy",
"severity": "info"
}
],
"categories": {
"unknown": 3
},
"tracking_count": 0,
"category_labels": {
"consent": "Consent",
"payment": "Zahlung",
"unknown": "Unklar",
"security": "Sicherheit",
"analytics": "Analytics",
"necessary": "Notwendig",
"functional": "Funktional",
"advertising": "Werbung"
},
"long_lived_count": 1,
"persistent_count": 3,
"first_party_count": 1,
"pre_consent_count": 3,
"retention_classes": {
"long": 1,
"short": 2
},
"third_party_count": 2,
"missing_secure_count": 1,
"retention_risk_count": 1,
"retention_risk_items": [
{
"name": "_vwo_uuid_v2",
"domain": "fotograf.de",
"secure": false,
"sources": [
"browser_first_load"
],
"category": "unknown",
"provider": "fotograf.de",
"tracking": false,
"http_only": false,
"same_site": "Lax",
"expires_at": "2027-06-20T06:51:40+00:00",
"long_lived": true,
"persistent": true,
"first_party": true,
"origin_host": "fotograf.de",
"pre_consent": true,
"source_label": "Chromium-Erstaufruf",
"category_label": "Unklar",
"retention_risk": "mittel",
"expires_in_days": 365,
"origin_evidence": "99 Browser-Request(s) · document:1, font:4, image:18, script:35",
"origin_provider": "fotograf.de",
"retention_class": "long",
"retention_label": "lang (365 Tage)",
"likely_essential": false,
"origin_script_url": "",
"origin_resource_type": ""
}
],
"very_long_lived_count": 0,
"missing_samesite_count": 0,
"persistent_unknown_count": 0,
"long_lived_tracking_count": 0
},
"security_header_analysis": {
"color": "red",
"score": 34,
"checks": [
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "HSTS",
"value": "",
"header": "strict-transport-security",
"present": false,
"purpose": "Erzwingt HTTPS nach dem ersten sicheren Aufruf.",
"severity": "warning"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Content-Security-Policy",
"value": "",
"header": "content-security-policy",
"present": false,
"purpose": "Begrenzt Skript-, Frame- und Ressourcenquellen im Browser.",
"severity": "warning"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "X-Frame-Options",
"value": "",
"header": "x-frame-options",
"present": false,
"purpose": "Reduziert Clickjacking-Risiken bei älteren Browsern.",
"severity": "warning"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "X-Content-Type-Options",
"value": "",
"header": "x-content-type-options",
"present": false,
"purpose": "Verhindert MIME-Sniffing bei Skripten und Stylesheets.",
"severity": "warning"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Referrer-Policy",
"value": "",
"header": "referrer-policy",
"present": false,
"purpose": "Begrenzt, welche URL-Informationen an Zielseiten weitergegeben werden.",
"severity": "info"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Permissions-Policy",
"value": "",
"header": "permissions-policy",
"present": false,
"purpose": "Begrenzt sensible Browser-Funktionen pro Seite.",
"severity": "info"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Cross-Origin-Opener-Policy",
"value": "",
"header": "cross-origin-opener-policy",
"present": false,
"purpose": "Isoliert Top-Level-Fenster und reduziert Cross-Origin-Seiteneffekte.",
"severity": "info"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Cross-Origin-Resource-Policy",
"value": "",
"header": "cross-origin-resource-policy",
"present": false,
"purpose": "Begrenzt, welche fremden Seiten Ressourcen einbetten dürfen.",
"severity": "info"
},
{
"ok": false,
"note": "Fehlt in der HTTP-Antwort.",
"label": "Cross-Origin-Embedder-Policy",
"value": "",
"header": "cross-origin-embedder-policy",
"present": false,
"purpose": "Erzwingt kontrollierte Cross-Origin-Einbettungen und kann Cross-Origin Isolation ermöglichen.",
"severity": "info"
}
],
"status": "kritisch",
"missing": [
"HSTS",
"Content-Security-Policy",
"X-Frame-Options",
"X-Content-Type-Options",
"Referrer-Policy",
"Permissions-Policy",
"Cross-Origin-Opener-Policy",
"Cross-Origin-Resource-Policy",
"Cross-Origin-Embedder-Policy"
],
"summary": "0 von 9 wichtigen Security-Headern vorhanden, 0 korrekt bewertet. Keine Content-Security-Policy gefunden.",
"findings": [],
"ok_count": 0,
"weak_count": 0,
"csp_analysis": {
"color": "red",
"score": 0,
"status": "fehlt",
"summary": "Keine Content-Security-Policy gefunden.",
"enforced": false,
"findings": [],
"available": false,
"directives": [],
"report_only": false,
"finding_count": 0,
"warning_count": 0
},
"missing_count": 9,
"present_count": 0,
"missing_info_count": 5,
"missing_warning_count": 4
},
"infrastructure_analysis": {
"signals": {
"caa": false,
"dnssec": false,
"final_https": true,
"tls_version": "TLSv1.3",
"hsts_enabled": false,
"address_count": 3,
"ipv6_available": false,
"email_protection": {
"mx": true,
"spf": true,
"dmarc": true
},
"certificate_valid": true,
"certificate_issuer": "Amazon RSA 2048 M03",
"certificate_alt_names": [
"fotograf.de",
"*.fotograf.de"
],
"multiple_ip_addresses": true,
"certificate_expires_at": "Sep 16 23:59:59 2026 GMT",
"certificate_days_remaining": 89,
"certificate_hostname_matches": true
},
"findings": [
{
"id": "caa_missing",
"title": "CAA-Record fehlt",
"public": true,
"category": "dns",
"severity": "info"
}
],
"risk_level": "low",
"positive_signals": [
"Mehrere IP-Adressen gefunden: Hinweis auf redundante Infrastruktur oder CDN.",
"Moderne TLS-Version aktiv: TLSv1.3.",
"DMARC ist für die Domain vorhanden."
]
},
"performance_analysis": {
"score": 94,
"signals": {
"compressed": false,
"duration_ms": 1226,
"image_count": 26,
"script_count": 21,
"cache_control": "",
"content_length": 0,
"viewport_found": true,
"stylesheet_count": 42
},
"findings": [
{
"id": "too_many_render_blocking_assets",
"title": "Viele potenziell blockierende Assets",
"public": true,
"category": "performance",
"severity": "info"
}
],
"risk_level": "medium"
},
"accessibility_analysis": {
"color": "green",
"score": 96,
"status": "unauffällig",
"signals": {
"h1_count": 1,
"image_count": 26,
"button_count": 4,
"heading_count": 50,
"viewport_found": true,
"html_lang_found": true,
"form_field_count": 5,
"image_missing_alt_count": 1,
"buttons_without_name_count": 0,
"form_fields_without_label_count": 0
},
"summary": "26 Bild(er), 5 Formularfeld(er), 4 Button(s) im passiven HTML-Sample auf Basis-Barrierefreiheit geprüft.",
"findings": [
{
"id": "image_alt_missing",
"count": 1,
"title": "Bilder ohne Alternativtext",
"public": true,
"category": "accessibility",
"severity": "info",
"evidence_items": [
"https://www.fotograf.de/wp-content/uploads/sites/14/2025/07/randyrahmen-207x300-1-150x150.jpg"
]
}
],
"wcag_matrix": {
"rows": [
{
"id": "wcag_non_text_content",
"ok": false,
"wcag": "WCAG 1.1.1 Non-text Content",
"title": "Alternativtexte für Bilder",
"impact": "mittel",
"status": "prüfen",
"evidence": "1 von 26 Bild(er) ohne alt-Text im HTML-Sample."
},
{
"id": "wcag_form_labels",
"ok": true,
"wcag": "WCAG 1.3.1 Info and Relationships / 3.3.2 Labels or Instructions",
"title": "Formularfelder beschriften",
"impact": "niedrig",
"status": "ok",
"evidence": "0 von 5 Formularfeld(er) ohne erkennbare Beschriftung."
},
{
"id": "wcag_button_names",
"ok": true,
"wcag": "WCAG 4.1.2 Name, Role, Value",
"title": "Buttons mit Namen versehen",
"impact": "niedrig",
"status": "ok",
"evidence": "0 von 4 Button(s) ohne erkennbaren Namen."
},
{
"id": "wcag_page_language",
"ok": true,
"wcag": "WCAG 3.1.1 Language of Page",
"title": "Seitensprache auszeichnen",
"impact": "niedrig",
"status": "ok",
"evidence": "HTML-lang-Attribut gefunden."
},
{
"id": "wcag_heading_structure",
"ok": true,
"wcag": "WCAG 1.3.1 Info and Relationships / 2.4.6 Headings and Labels",
"title": "Überschriftenstruktur",
"impact": "niedrig",
"status": "ok",
"evidence": "1 H1 und 50 Überschrift(en) im HTML-Sample."
},
{
"id": "wcag_mobile_reflow",
"ok": true,
"wcag": "WCAG 1.4.10 Reflow",
"title": "Mobile Viewport-Basis",
"impact": "niedrig",
"status": "ok",
"evidence": "Viewport-Meta-Tag gefunden."
}
],
"summary": "1 WCAG-/EAA-Prüfpunkt(e) auffällig, davon 0 mit hoher Auswirkung.",
"standard": "WCAG 2.2 orientierte Basisprüfung",
"available": true,
"issue_count": 1,
"high_impact_count": 0
}
},
"domain_history": {
"status": [
"active"
],
"summary": "RDAP liefert kein klares Registrierungsdatum.",
"age_days": null,
"findings": [],
"available": true,
"registrar": "",
"expires_at": "",
"risk_level": "unknown",
"registered_at": "",
"expires_in_days": null,
"last_changed_at": "2026-02-24T15:08:48+00:00"
},
"data_entry_analysis": {
"forms": [],
"score": 90,
"summary": "Die Seite kann Name/personenbezogene Daten, Newsletter, Zahlung abfragen.",
"findings": [],
"form_count": 0,
"risk_level": "low",
"field_count": 5,
"asks_for_data": true,
"payment_providers": [],
"detected_data_types": [
{
"id": "personal",
"count": 5,
"label": "Name/personenbezogene Daten"
},
{
"id": "newsletter",
"count": 1,
"label": "Newsletter"
},
{
"id": "payment",
"count": 1,
"label": "Zahlung"
}
],
"privacy_context_found": true,
"operator_context_found": true
},
"pii_exposure_analysis": {
"color": "yellow",
"score": 78,
"checks": [
{
"id": "current_url",
"ok": true,
"count": 0,
"label": "Aktuelle URL",
"detail": "Keine sensiblen Query-Parameter erkannt."
},
{
"id": "link_queries",
"ok": false,
"count": 1,
"label": "Link-Parameter",
"detail": "1 Link(s) mit sensiblen Parametern."
},
{
"id": "get_forms",
"ok": true,
"count": 0,
"label": "GET-Formulare",
"detail": "Keine personenbezogenen GET-Formulare erkannt."
},
{
"id": "external_forms",
"ok": true,
"count": 0,
"label": "Externe Formularziele",
"detail": "Keine externen Formularziele mit personenbezogenen Feldern erkannt."
},
{
"id": "tracking_context",
"ok": false,
"count": 1,
"label": "Tracking neben Dateneingabe",
"detail": "1 datenschutzrelevante Drittanbieter."
}
],
"status": "prüfen",
"summary": "2 PII-/Datenleck-Hinweis(e) aus URL-, Formular- und Browserkontext.",
"findings": [
{
"id": "pii_sensitive_link_query",
"links": [
{
"href": "https://app.hubspot.com/meetings/torsten-krone",
"params": [
"__hstc",
"__hssc",
"__hsfp",
"uuid"
],
"external": true
}
],
"title": "Links mit sensiblen Query-Parametern erkannt",
"public": true,
"category": "privacy",
"severity": "info"
},
{
"id": "pii_tracking_on_data_entry_page",
"title": "Dateneingabe und datenschutzrelevante Drittanbieter im selben Browseraufruf",
"public": true,
"category": "privacy",
"severity": "warning",
"third_party_count": 1
}
],
"link_hits": [
{
"href": "https://app.hubspot.com/meetings/torsten-krone",
"params": [
"__hstc",
"__hssc",
"__hsfp",
"uuid"
],
"external": true
}
],
"finding_count": 2,
"current_url_hits": [],
"tracking_context": true,
"sensitive_get_forms": []
},
"scan_history_analysis": {
"available": false,
"summary": "Noch kein früherer gespeicherter Scan für diese Domain vorhanden.",
"total_scan_count": 1,
"previous_scan_count": 0,
"history": [
{
"scan_id": "c5a1bd57-1d64-4881-b0b6-8dfe7f3a60a0",
"created_at": "2026-06-19 08:52:04.466762+02",
"score": 18,
"verdict": "riskant",
"finding_count": 38,
"integrity_root_hash": "9ed2b4d8a7ddb7e6da75eda3fa2d0058273e57011902d4b2821adaad47a04052",
"integrity_available_hash_count": 9,
"current": true
}
],
"new_findings": [],
"resolved_findings": [],
"technical_changes": {
"available": false,
"summary": "Noch kein früherer Scan für technische Änderungen vorhanden."
}
},
"benchmark_analysis": {
"host": "fotograf.de",
"rank": 1,
"score": 18,
"status": "unter_durchschnitt",
"summary": "fotograf.de liegt mit 18 Punkten unter dem gespeicherten Durchschnitt von 51.7.",
"available": true,
"peer_count": 4584,
"percentile": 0,
"query_mode": "php_ttl_cache_refresh",
"distribution": {
"0_39": 781,
"40_59": 1986,
"60_79": 1809,
"80_100": 8
},
"median_score": 57,
"average_score": 51.7,
"comparison_basis": "Neuester gespeicherter SaferPage-Scan je Domain; überwiegend deutschsprachige gespeicherte Checks.",
"same_score_count": 0,
"better_than_count": 0,
"qualified_peer_count": 4440,
"zero_score_count": 144,
"top_quartile_score": 64,
"top_decile_score": 67,
"qualified_average_score": 53.3,
"qualified_median_score": 58,
"qualified_top_quartile_score": 64,
"qualified_top_decile_score": 68,
"thresholds": [
{
"id": "critical",
"label": "Kritisch",
"range": "0-39",
"met": true
},
{
"id": "basic",
"label": "Basis stabilisieren",
"range": "40-59",
"met": false
},
{
"id": "managed",
"label": "Gesteuert",
"range": "60-79",
"met": false
},
{
"id": "strong",
"label": "Stark",
"range": "80-100",
"met": false
}
],
"risk_tier": "kritisch",
"target_score": 40,
"aspirational_target_score": 68,
"gap_to_target": 22,
"gap_to_top_quartile": 46,
"gap_to_strong": 62,
"cache_ttl_seconds": 300
},
"audit_receipt": {
"url": "https://fotograf.de/",
"host": "fotograf.de",
"status": "verfügbar",
"bot_url": "https://saferpage.de/bot",
"summary": "Prüfbeleg für fotograf.de: kontrollierter HTTP-/Browser-Kurzcheck mit 122 Request(s), 4 Consent-Zustand/Zuständen und 7 Artefakt(en).",
"renderer": "playwright-chromium",
"artifacts": [
{
"label": "Öffentlicher Kurzreport",
"detail": "https://saferpage.de/fotograf.de",
"status": "verfügbar"
},
{
"label": "JSON-Export",
"detail": "Maschinenlesbarer Report mit Modulen, Nachweisen und Tabellen.",
"status": "verfügbar"
},
{
"label": "CSV-Export",
"detail": "Tabellarische Prüfzeilen für Betreiber, Datenschutz und Technik.",
"status": "verfügbar"
},
{
"label": "160x150 Seitenvorschau",
"detail": "/cache/screenshots/fotograf.de-160x150-ec8630eb5fcc4d5bb0.png",
"status": "verfügbar"
},
{
"label": "Cookie-Erklärung",
"detail": "4 Cookie-/Storage-Eintrag/Einträge.",
"status": "auffällig"
},
{
"label": "Empfänger-/Anbieterinventar",
"detail": "9 Anbieterzeile(n), 7 AVV-/Rollenprüfung(en).",
"status": "auffällig"
},
{
"label": "Barrierefreiheitserklärung-Entwurf",
"detail": "1 bekannte Barrierefreiheits-Punkt(e).",
"status": "Teilweise konform im automatischen Basischeck"
}
],
"available": true,
"final_url": "https://www.fotograf.de:443/",
"checked_at": "2026-06-19T06:52:03+00:00",
"share_text": "SaferPage Prüfbeleg fotograf.de: 122 Browser-Request(s), 9 Drittanbieter, 4 Cookie-/Storage-Einträge, geprüft am 2026-06-19T06:52:03.",
"user_agent": "SaferPageCrawler/0.3 (+https://saferpage.de/bot; schedules passive DACH website checks; report examples: https://saferpage.de/tests; kostenloser Report: <a href=\"https://saferpage.de/fotograf.de\">https://saferpage.de/fotograf.de</a>)",
"limitations": [
"Öffentliche Nachweise enthalten keine Cookie-Werte und keine vollständigen Request-URLs.",
"Der Scan ist ein passiver Browser- und HTTP-Kurzcheck; rechtliche Bewertung bleibt Betreiberaufgabe.",
"Dynamische Inhalte können sich je nach Region, Zeit, Gerät und Consent-Auswahl ändern."
],
"scan_context": "crawler",
"coverage_items": [
{
"label": "HTTP/DNS/TLS",
"value": "HTTP 200 · DNS ok · TLS ok"
},
{
"label": "Browserlauf",
"value": "122 Request(s), 9 Drittanbieter-Domain(s), 3 Browser-Cookie(s)."
},
{
"label": "Consent-Zustände",
"value": "4 Zustand/Zustände: Default, Ablehnen, Akzeptieren und GPC soweit verfügbar."
},
{
"label": "Seitenabdeckung",
"value": "8 priorisierte Unterseite(n) im Nachweispack."
},
{
"label": "Drittanbieter-Auszug",
"value": "9 Anbieterzeile(n) im öffentlichen Nachweis."
},
{
"label": "Cookie-Auszug",
"value": "3 Cookie-Zeile(n) im öffentlichen Nachweis."
}
],
"confidence_score": 67,
"browser_final_url": "https://www.fotograf.de/"
},
"evidence_integrity_manifest": {
"host": "fotograf.de",
"status": "verfügbar",
"summary": "Integritätsmanifest für fotograf.de: 9/9 Nachweisbereich(e) mit SHA-256-Hash dokumentiert.",
"sections": [
{
"id": "audit_receipt",
"hash": "8b0ea46645cb7037ebc82cfcd6bb0e40b1eadbc17ad4f287347d5b0383ba31f7",
"count": 18,
"label": "Prüfbeleg",
"detail": "Kanonischer JSON-Hash des kompakten Prüfbelegs.",
"status": "verfügbar"
},
{
"id": "protocol",
"hash": "9405432fe93497b6d94a5dc4152eb442094e69ac948c31bf182db3b33620c189",
"count": 15,
"label": "Scan-Protokoll",
"detail": "URL, Endziel, User-Agent, Zeitstempel, HTTP/DNS/TLS und Renderer.",
"status": "verfügbar"
},
{
"id": "checkpoints",
"hash": "7f4ac435a014359730f72540d6169cc5173a984f1ea810b81f21d1b15c919dd2",
"count": 6,
"label": "Prüfschritte",
"detail": "Kanonischer JSON-Hash der dokumentierten Prüfstationen.",
"status": "verfügbar"
},
{
"id": "consent_states",
"hash": "f19fba8b5531afe62d6e5c704f4c0756c606104deb717fe8c7390660391f1b3f",
"count": 4,
"label": "Consent-Zustände",
"detail": "Default-, Ablehnen-, Akzeptieren- und GPC-Nachweise soweit verfügbar.",
"status": "verfügbar"
},
{
"id": "third_party_evidence",
"hash": "e32bf2bd3e5a2352e64a9ed1c6804f9a117d2049961e7f0f2e885d1715a31327",
"count": 9,
"label": "Drittanbieter-Auszug",
"detail": "Sanitisierte Anbieter-, Kategorie-, Transfer- und Request-Zählwerte.",
"status": "verfügbar"
},
{
"id": "cookie_evidence",
"hash": "7ae8bf0b2b5cc6eee43d2692c0f57645e39980cb8f88503f2223a5ab3d5ae819",
"count": 3,
"label": "Cookie-Auszug",
"detail": "Sanitisierte Cookie-Metadaten ohne Cookie-Werte.",
"status": "verfügbar"
},
{
"id": "request_samples",
"hash": "5994bd1ba93ad09172e8ace7ceebee0b55509c1af05ac900a97e329e4c8ec0c1",
"count": 10,
"label": "Request-Samples",
"detail": "Sanitisierte Drittanbieter-Samples ohne vollständige Request-URLs.",
"status": "verfügbar"
},
{
"id": "checked_pages",
"hash": "ec043d90341f5bd23316e2c8a55193cf614e0cb8b34ec4438e10a349c4273ddc",
"count": 8,
"label": "Geprüfte Unterseiten",
"detail": "Priorisierte Pfade aus Sitemap, Pflichtseiten und interner Linkstruktur.",
"status": "verfügbar"
},
{
"id": "screenshot_file",
"hash": "a3b84694359a25cfc2cf043bf48815ae64446e2c58a89b96b9dfd588dd0dce1d",
"count": 1211,
"label": "160x150 Seitenvorschau-Datei",
"detail": "/cache/screenshots/fotograf.de-160x150-ec8630eb5fcc4d5bb0.png",
"status": "verfügbar"
}
],
"algorithm": "sha256",
"available": true,
"root_hash": "9ed2b4d8a7ddb7e6da75eda3fa2d0058273e57011902d4b2821adaad47a04052",
"checked_at": "2026-06-19T06:52:03+00:00",
"limitations": [
"Das Manifest schützt die im Report veröffentlichten/sanitisierten Nachweise, nicht verdeckte Cookie-Werte oder vollständige Request-URLs.",
"Ohne externe qualifizierte Zeitstempelung beweist der Hash Integrität des exportierten Artefakts, aber keine amtliche Zustellung."
],
"section_count": 9,
"canonicalization": "JSON UTF-8, sort_keys=true, kompakte Separatoren; Screenshot als rohe Datei-Bytes.",
"available_hash_count": 9
},
"audit_evidence_pack": {
"status": "verfügbar",
"summary": "Nachweisprotokoll mit 122 Browser-Request(s), 3 Cookie-Nachweis(en), 9 Drittanbieter-Auszug/auszügen und 4 Consent-Zustand/Zuständen.",
"protocol": {
"host": "fotograf.de",
"dns_ok": true,
"tls_ok": true,
"bot_url": "https://saferpage.de/bot",
"renderer": "playwright-chromium",
"final_url": "https://www.fotograf.de:443/",
"input_url": "https://fotograf.de/",
"checked_at": "2026-06-19T06:52:03+00:00",
"user_agent": "SaferPageCrawler/0.3 (+https://saferpage.de/bot; schedules passive DACH website checks; report examples: https://saferpage.de/tests; kostenloser Report: <a href=\"https://saferpage.de/fotograf.de\">https://saferpage.de/fotograf.de</a>)",
"http_status": 200,
"scan_context": "crawler",
"screenshot_url": "/cache/screenshots/fotograf.de-160x150-ec8630eb5fcc4d5bb0.png",
"googlebot_status": 200,
"browser_final_url": "https://www.fotograf.de/",
"dns_address_count": 3
},
"checkpoints": [
{
"label": "DNS",
"detail": "3 Adresse(n) aufgelöst.",
"status": "ok"
},
{
"label": "TLS/HTTPS",
"detail": "TLSv1.3",
"status": "ok"
},
{
"label": "HTTP-Abruf",
"detail": "Status 200, Endziel https://www.fotograf.de:443/.",
"status": "ok"
},
{
"label": "Browserlauf",
"detail": "122 Request(s), 9 Drittanbieter-Domain(s).",
"status": "ok"
},
{
"label": "Consent-Zustände",
"detail": "Default, Ablehnen, Akzeptieren und GPC werden soweit möglich gegenübergestellt.",
"status": "unauffällig"
},
{
"label": "Exports",
"detail": "PDF/Druck, JSON und CSV enthalten die wesentlichen Prüfnachweise.",
"status": "verfügbar"
}
],
"limitations": [
"Öffentliche Nachweise enthalten keine Cookie-Werte und keine vollständigen Request-URLs.",
"Der Scan ist ein passiver Browser- und HTTP-Kurzcheck; rechtliche Bewertung bleibt Betreiberaufgabe.",
"Dynamische Inhalte können sich je nach Region, Zeit, Gerät und Consent-Auswahl ändern."
],
"checked_pages": [
{
"path": "/blog/die-16-haeufigsten-fragen-zum-datenschutz-fuer-fotografen-dsgvo",
"source": "sitemap",
"status": 0,
"category": "datenschutz"
},
{
"path": "/datenschutz",
"source": "homepage_link+sitemap",
"status": 0,
"category": "datenschutz"
},
{
"path": "/datenschutzerklaerung",
"source": "homepage_link+sitemap",
"status": 0,
"category": "datenschutz"
},
{
"path": "/entagged-privacynotice",
"source": "sitemap",
"status": 0,
"category": "datenschutz"
},
{
"path": "/recruiting-privacy-notice",
"source": "homepage_link+sitemap",
"status": 0,
"category": "datenschutz"
},
{
"path": "/impressum",
"source": "homepage_link+sitemap",
"status": 0,
"category": "impressum"
},
{
"path": "/cookie-declaration",
"source": "sitemap",
"status": 0,
"category": "cookies"
},
{
"path": "/cookie-erklaerung",
"source": "sitemap",
"status": 0,
"category": "cookies"
}
],
"cookie_evidence": [
{
"name": "_vwo_uuid_v2",
"domain": "fotograf.de",
"secure": false,
"category": "Unklar",
"provider": "fotograf.de",
"tracking": false,
"retention": "lang (365 Tage)",
"same_site": "Lax",
"pre_consent": true
},
{
"name": "__cf_bm",
"domain": "hsforms.com",
"secure": true,
"category": "Unklar",
"provider": "hsforms.com",
"tracking": false,
"retention": "kurz (0 Tage)",
"same_site": "None",
"pre_consent": true
},
{
"name": "__cf_bm",
"domain": "hsforms.net",
"secure": true,
"category": "Unklar",
"provider": "hsforms.net",
"tracking": false,
"retention": "kurz (0 Tage)",
"same_site": "None",
"pre_consent": true
}
],
"browser_evidence": {
"gpc_enabled": true,
"request_count": 122,
"storage_total": 1,
"accept_clicked": false,
"reject_clicked": true,
"browser_cookie_count": 3,
"contacted_domain_count": 10,
"third_party_domain_count": 9,
"storage_tracking_hint_count": 1,
"privacy_relevant_domain_count": 1
},
"storage_evidence": {
"tracking_key_hints": [
"visitor"
],
"local_storage_total": 1,
"session_storage_total": 0
},
"third_party_evidence": [
{
"host": "googletagmanager.com",
"category": "Tag-Manager",
"provider": "Google Tag Manager",
"transfer": "Drittland/USA",
"risk_level": "mittel",
"request_count": 1,
"resource_types": [
"script"
],
"privacy_relevant": true
},
{
"host": "fonts.gstatic.com",
"category": "Schriften",
"provider": "Google Fonts",
"transfer": "Drittland/USA",
"risk_level": "mittel",
"request_count": 7,
"resource_types": [
"font"
],
"privacy_relevant": false
},
{
"host": "consent.cookiebot.com",
"category": "Sonstige",
"provider": "consent.cookiebot.com",
"transfer": "Jurisdiktion unklar",
"risk_level": "niedrig",
"request_count": 3,
"resource_types": [
"script"
],
"privacy_relevant": false
},
{
"host": "consentcdn.cookiebot.com",
"category": "Sonstige",
"provider": "consentcdn.cookiebot.com",
"transfer": "Jurisdiktion unklar",
"risk_level": "niedrig",
"request_count": 3,
"resource_types": [
"document",
"script",
"xhr"
],
"privacy_relevant": false
},
{
"host": "fonts.googleapis.com",
"category": "Schriften",
"provider": "Google Fonts",
"transfer": "Drittland/USA",
"risk_level": "mittel",
"request_count": 2,
"resource_types": [
"stylesheet"
],
"privacy_relevant": false
},
{
"host": "dev.visualwebsiteoptimizer.com",
"category": "Sonstige",
"provider": "dev.visualwebsiteoptimizer.com",
"transfer": "Jurisdiktion unklar",
"risk_level": "niedrig",
"request_count": 2,
"resource_types": [
"image",
"xhr"
],
"privacy_relevant": false
},
{
"host": "forms-na1.hsforms.com",
"category": "Sonstige",
"provider": "forms-na1.hsforms.com",
"transfer": "Jurisdiktion unklar",
"risk_level": "niedrig",
"request_count": 2,
"resource_types": [
"image"
],
"privacy_relevant": false
},
{
"host": "js.hsforms.net",
"category": "Sonstige",
"provider": "js.hsforms.net",
"transfer": "Jurisdiktion unklar",
"risk_level": "niedrig",
"request_count": 2,
"resource_types": [
"script"
],
"privacy_relevant": false
},
{
"host": "forms.hsforms.com",
"category": "Sonstige",
"provider": "forms.hsforms.com",
"transfer": "Jurisdiktion unklar",
"risk_level": "niedrig",
"request_count": 1,
"resource_types": [
"xhr"
],
"privacy_relevant": false
}
],
"external_script_count": 1,
"consent_state_evidence": [
{
"label": "Erstaufruf",
"cookie_count": 0,
"domain_count": 9,
"request_count": 23,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 1
},
{
"label": "Nach Ablehnen neu",
"cookie_count": 0,
"domain_count": 2,
"request_count": 2,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"label": "Nach Akzeptieren neu",
"cookie_count": 0,
"domain_count": 0,
"request_count": 0,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 0
},
{
"label": "GPC-Aufruf",
"cookie_count": 0,
"domain_count": 9,
"request_count": 21,
"storage_tracking_hint_count": 0,
"privacy_relevant_domain_count": 1
}
],
"request_sample_evidence": [
{
"host": "fonts.googleapis.com",
"query_keys": [
"family",
"display",
"ver"
],
"resource_type": "stylesheet",
"query_key_count": 3,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "js.hsforms.net",
"query_keys": [],
"resource_type": "script",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "googletagmanager.com",
"query_keys": [
"id"
],
"resource_type": "script",
"query_key_count": 1,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "fonts.gstatic.com",
"query_keys": [],
"resource_type": "font",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "fonts.gstatic.com",
"query_keys": [],
"resource_type": "font",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "fonts.gstatic.com",
"query_keys": [],
"resource_type": "font",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "fonts.gstatic.com",
"query_keys": [],
"resource_type": "font",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "fonts.gstatic.com",
"query_keys": [],
"resource_type": "font",
"query_key_count": 0,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "forms.hsforms.com",
"query_keys": [
"hs_static_app",
"hs_static_app_version",
"x-hubspot-static-app-info"
],
"resource_type": "xhr",
"query_key_count": 3,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
},
{
"host": "consent.cookiebot.com",
"query_keys": [
"cbid",
"implementation",
"consentmode-dataredaction",
"georegions"
],
"resource_type": "script",
"query_key_count": 4,
"referrer_has_path": false,
"referrer_has_query": false,
"sensitive_query_key_count": 0
}
]
},
"consent_visual_salience_evidence": {
"schema": "https://saferpage.de/schemas/consent-visual-salience-evidence.v1",
"status": "measured_dom_viewport_signal",
"available": true,
"evidence_level": "dom_viewport_signal_only",
"summary": "Der erste Headless-Chromium-Viewport liefert sichtbare Consent-Control-Signale mit Text, Position, Groesse und typografischen Hinweisen.",
"sample_status": "classified_control_samples",
"classified_sample_count": 3,
"accept_control_count": 0,
"reject_control_count": 1,
"settings_control_count": 2,
"visible_control_count": 16,
"accept_max_area": 0,
"reject_max_area": 14606,
"reject_prominence_ratio": "nicht messbar",
"samples": [
{
"kind": "reject",
"text": "Deny",
"tag": "button",
"width": 285,
"height": 51,
"area": 14606,
"top": 594,
"left": 77,
"font_weight": "600"
},
{
"kind": "settings",
"text": "Show details",
"tag": "a",
"width": 116,
"height": 24,
"area": 2792,
"top": 547,
"left": 816,
"font_weight": "600"
},
{
"kind": "settings",
"text": "Customize",
"tag": "button",
"width": 285,
"height": 51,
"area": 14606,
"top": 594,
"left": 370,
"font_weight": "600"
}
],
"sample_boundary": "Samples enthalten nur klassifizierte Accept-/Reject-/Settings-Controls. Weitere sichtbare Consent-Controls bleiben als Zaehler erhalten, werden aber ohne Klassifizierung nicht als Ablehnen-, Akzeptieren- oder Einstellungsprobe behauptet.",
"claim_boundary": "Consent-Visual-Salienz ist ein DOM-/Viewport-Signal aus dem ersten Browserlauf. Sie ist keine Rechtsbewertung, kein Dark-Pattern-Endurteil und kein Nachweis fuer spaetere Consent-Zustaende, Scrollbereiche, Loginbereiche oder manuelle Betreiberkontexte."
}
}