{
    "schema": "https://saferpage.de/schemas/technology-detection.v1",
    "generated_at": "2026-07-03T08:19:00+00:00",
    "domain": "c2h.at",
    "available": true,
    "scan": {
        "id": "966254a8-d52e-49f4-8411-4691645c9085",
        "checked_at": "2026-07-03 07:38:18.962421+02"
    },
    "summary": "c2h.at: 19 sichtbare Technik-/Anbietersignale, 4 mit hoher Datenschutzrelevanz, 2 CMS-/Shop-Hinweis(e).",
    "metrics": {
        "technology_count": 19,
        "high_privacy_relevance_count": 4,
        "cms_or_shop_count": 2,
        "external_script_count": 11,
        "request_count": 74,
        "third_party_domain_count": 7,
        "infrastructure_finding_count": 2
    },
    "signals": {
        "server_header": "nginx",
        "generator": "",
        "x_powered_by": "PleskLin",
        "asset_hosts": [
            "cdnjs.cloudflare.com",
            "www.google.com",
            "cdn.jsdelivr.net",
            "widget.trustpilot.com",
            "www.googletagmanager.com",
            "feedroll.com",
            "www.provenexpert.com",
            "d3e54v103j8qbb.cloudfront.net"
        ],
        "external_scripts": [
            "https://cdnjs.cloudflare.com/ajax/libs/html5shiv/3.7.3/html5shiv.min.js",
            "https://www.google.com/recaptcha/api.js",
            "https://cdn.jsdelivr.net/npm/@finsweet/cookie-consent@1/fs-cc.js",
            "https://widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js",
            "https://www.googletagmanager.com/gtag/js?id=UA-46063965-2",
            "https://feedroll.com/rssviewer/feed2js.php?src=https%3A%2F%2Fwww.c2h.at%2Faccount%2Fannouncements%2Frss&num=5&desc=200&utf=y",
            "https://www.provenexpert.com/widget/richsnippet.js?u=1R3o3ZUZj9zo0pQAlImA4tmpkVwomNmZ&v=2",
            "https://widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js",
            "https://www.provenexpert.com/widget/circlewidget.js?s=120&id=qvkcx&u=1R3o3ZUZj9zo0pQAlImA4tmpkVwomNmZ",
            "https://d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=63d062a73df2aa5d3fa9089e",
            "https://cdnjs.cloudflare.com/ajax/libs/placeholders/3.0.2/placeholders.min.js"
        ],
        "tls_version": "TLSv1.3",
        "certificate_issuer": "YR2",
        "renderer": "playwright-chromium"
    },
    "category_counts": {
        "Analytics/Werbung": 4,
        "cdn": 2,
        "other": 5,
        "CMS": 1,
        "Hosting/CDN": 1,
        "Server": 2,
        "Bibliothek": 2,
        "Shop": 1,
        "Backend": 1
    },
    "technologies": [
        {
            "id": "google_analytics",
            "name": "Google Analytics",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "medium",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: gtag("
            ],
            "source": "technology_analysis"
        },
        {
            "id": "google_tag_manager",
            "name": "Google Tag Manager",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: googletagmanager.com",
                "Script-Domain: googletagmanager.com"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "matomo",
            "name": "Matomo",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: matomo.js",
                "Script-Domain: matomo"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "tracking_universal_analytics",
            "name": "Universal Analytics",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "google_universal_analytics",
                "UA-46063965-2"
            ],
            "source": "privacy_analysis"
        },
        {
            "id": "provider_google_static",
            "name": "Google Static",
            "category": "cdn",
            "category_label": "cdn",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "gstatic.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google.com",
            "name": "google.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "google.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "webflow",
            "name": "Webflow",
            "category": "cms",
            "category_label": "CMS",
            "confidence": "medium",
            "risk_score": 52,
            "privacy_relevance": "mittel",
            "evidence": [
                "Signal: data-wf-page=\""
            ],
            "source": "technology_analysis"
        },
        {
            "id": "cloudflare",
            "name": "Cloudflare",
            "category": "hosting_cdn",
            "category_label": "Hosting/CDN",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Signal: cloudflare"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_jsdelivr",
            "name": "jsDelivr",
            "category": "cdn",
            "category_label": "cdn",
            "confidence": "browser",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "cdn.jsdelivr.net",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "nginx",
            "name": "nginx",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: nginx"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "server_header",
            "name": "nginx",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: nginx"
            ],
            "source": "technology_signals"
        },
        {
            "id": "bootstrap",
            "name": "Bootstrap",
            "category": "library",
            "category_label": "Bibliothek",
            "confidence": "medium",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Signal: bootstrap.min.js"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "magento",
            "name": "Magento",
            "category": "ecommerce",
            "category_label": "Shop",
            "confidence": "medium",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Signal: magento"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "plesklin",
            "name": "PleskLin",
            "category": "backend",
            "category_label": "Backend",
            "confidence": "high",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "X-Powered-By: PleskLin"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_d3e54v103j8qbb.cloudfront.net",
            "name": "d3e54v103j8qbb.cloudfront.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "d3e54v103j8qbb.cloudfront.net",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_feedroll.com",
            "name": "feedroll.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "feedroll.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "jquery",
            "name": "jQuery",
            "category": "library",
            "category_label": "Bibliothek",
            "confidence": "high",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Signal: jquery-",
                "Asset: https://d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=63d062a73df2aa5d3fa9089"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_provenexpert.com",
            "name": "provenexpert.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "provenexpert.com",
                "3 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_widget.trustpilot.com",
            "name": "widget.trustpilot.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "widget.trustpilot.com",
                "5 Request(s)"
            ],
            "source": "browser_analysis"
        }
    ],
    "operator_actions": [
        {
            "id": "action_google_analytics",
            "technology": "Google Analytics",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/c2h.at"
        },
        {
            "id": "action_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/c2h.at"
        },
        {
            "id": "action_matomo",
            "technology": "Matomo",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/c2h.at"
        },
        {
            "id": "action_tracking_universal_analytics",
            "technology": "Universal Analytics",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/c2h.at"
        },
        {
            "id": "action_provider_google_static",
            "technology": "Google Static",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_google.com",
            "technology": "google.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_webflow",
            "technology": "Webflow",
            "priority": "mittel",
            "owner": "Webbetrieb/IT",
            "action": "CMS, Themes, Plugins und sichtbare Versionshinweise aktualisieren, unnötige Plugins entfernen und Re-Scan nach Deployment ausführen.",
            "guide_url": "https://saferpage.de/guides/sichtbare-versionen-und-cves-beheben"
        },
        {
            "id": "action_cloudflare",
            "technology": "Cloudflare",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/c2h.at"
        },
        {
            "id": "action_provider_jsdelivr",
            "technology": "jsDelivr",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_nginx",
            "technology": "nginx",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/c2h.at"
        }
    ],
    "cms_playbooks": [
        {
            "id": "webflow",
            "platform": "Webflow",
            "summary": "Webflow Custom Code, Embeds, Fonts, Forms und Integrationen sollten gegen externe Vorabkontakte geprüft werden.",
            "steps": [
                "Project Settings, Custom Code, Page Custom Code und Embed-Elemente auf Drittanbieter-Skripte prüfen.",
                "Fonts lokal beziehungsweise datensparsam einbinden und externe Embeds per Zwei-Klick oder Consent verzögern.",
                "Forms, reCAPTCHA, Analytics und Marketingpixel in Datenschutzerklärung und Consent-Oberfläche erklären.",
                "Nach Publish Cache/CDN berücksichtigen und SaferPage erneut scannen."
            ],
            "acceptance": [
                "Custom-Code-Liste ist dokumentiert.",
                "Embeds laden nicht vor Einwilligung.",
                "Formular- und Anbieterhinweise sind verlinkt."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=c2h.at"
        }
    ],
    "infrastructure": {
        "risk_level": "low",
        "positive_signals": [
            "Moderne TLS-Version aktiv: TLSv1.3.",
            "HSTS ist aktiv."
        ],
        "findings": [
            {
                "id": "dmarc_missing",
                "title": "DMARC fehlt",
                "public": true,
                "category": "email",
                "severity": "info",
                "recommendation": "DMARC setzen, damit E-Mail-Spoofing der Domain besser eingeschränkt wird."
            },
            {
                "id": "caa_missing",
                "title": "CAA-Record fehlt",
                "public": true,
                "category": "dns",
                "severity": "info",
                "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen."
            }
        ]
    },
    "links": {
        "technology_center": "https://saferpage.de/technik/c2h.at",
        "json": "https://saferpage.de/technik/c2h.at/export",
        "csv": "https://saferpage.de/technik/c2h.at/export-csv",
        "markdown": "https://saferpage.de/technik/c2h.at/stack-md",
        "report": "https://saferpage.de/c2h.at",
        "vendors": "https://saferpage.de/anbieter/c2h.at",
        "consent": "https://saferpage.de/consent/c2h.at",
        "findings": "https://saferpage.de/befunde/c2h.at",
        "evidence": "https://saferpage.de/nachweise/c2h.at"
    },
    "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet."
}
