{ "schema": "https://saferpage.de/schemas/technology-detection.v1", "generated_at": "2026-06-26T13:05:41+00:00", "domain": "cashbackonline.at", "available": true, "scan": { "id": "2820a57d-cc86-4cb4-90ba-c112a61540e7", "checked_at": "2026-06-26 09:34:57.472177+02" }, "summary": "cashbackonline.at: 16 sichtbare Technik-/Anbietersignale, 7 mit hoher Datenschutzrelevanz, 1 CMS-/Shop-Hinweis(e).", "metrics": { "technology_count": 16, "high_privacy_relevance_count": 7, "cms_or_shop_count": 1, "external_script_count": 1, "request_count": 221, "third_party_domain_count": 8, "infrastructure_finding_count": 2 }, "signals": { "server_header": "nginx/1.20.2", "generator": "Drupal 9 (https://www.drupal.org)", "x_powered_by": "", "asset_hosts": [ "www.googletagmanager.com", "cdnjs.cloudflare.com", "benefitworld.at", "www.cashbackonline.at" ], "external_scripts": [ "https://www.googletagmanager.com/gtag/js?id=AW-990678267" ], "tls_version": "TLSv1.3", "certificate_issuer": "YR2", "renderer": "playwright-chromium" }, "category_counts": { "Analytics/Werbung": 5, "Werbung": 1, "tag_manager": 1, "other": 4, "CMS": 1, "Hosting/CDN": 1, "cdn": 1, "Server": 2 }, "technologies": [ { "id": "tracking_google_ads_conversion", "name": "Google Ads Conversion", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "google_ads_conversion", "AW-990678267" ], "source": "privacy_analysis" }, { "id": "google_analytics", "name": "Google Analytics", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "medium", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Signal: gtag(" ], "source": "technology_analysis" }, { "id": "provider_google_analytics", "name": "Google Analytics", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "browser", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "region1.google-analytics.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_google_doubleclick", "name": "Google DoubleClick", "category": "advertising", "category_label": "Werbung", "confidence": "browser", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "ad.doubleclick.net", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "google_tag_manager", "name": "Google Tag Manager", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Signal: googletagmanager.com", "Script-Domain: googletagmanager.com" ], "source": "technology_analysis" }, { "id": "provider_google_tag_manager", "name": "Google Tag Manager", "category": "tag_manager", "category_label": "tag_manager", "confidence": "browser", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "googletagmanager.com", "3 Request(s)" ], "source": "browser_analysis" }, { "id": "tracking_google_tag_manager", "name": "Google Tag Manager", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "google_tag_manager", "GTM-KVGFNDC" ], "source": "privacy_analysis" }, { "id": "provider_accounts.google.com", "name": "accounts.google.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "accounts.google.com", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_google.com", "name": "google.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "google.com", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "drupal", "name": "Drupal", "category": "cms", "category_label": "CMS", "confidence": "high", "risk_score": 52, "privacy_relevance": "mittel", "evidence": [ "Meta generator: Drupal 9 (https://www.drupal.org)", "Signal: drupal-settings-json" ], "source": "technology_analysis" }, { "id": "cloudflare", "name": "Cloudflare", "category": "hosting_cdn", "category_label": "Hosting/CDN", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Signal: cloudflare" ], "source": "technology_analysis" }, { "id": "provider_cloudflare", "name": "Cloudflare", "category": "cdn", "category_label": "cdn", "confidence": "browser", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "cdnjs.cloudflare.com", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "nginx", "name": "nginx", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx/1.20.2" ], "source": "technology_analysis" }, { "id": "server_header", "name": "nginx/1.20.2", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx/1.20.2" ], "source": "technology_signals" }, { "id": "provider_chimpstatic.com", "name": "chimpstatic.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "chimpstatic.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_komito.net", "name": "komito.net", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "komito.net", "1 Request(s)" ], "source": "browser_analysis" } ], "operator_actions": [ { "id": "action_tracking_google_ads_conversion", "technology": "Google Ads Conversion", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/cashbackonline.at" }, { "id": "action_google_analytics", "technology": "Google Analytics", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/cashbackonline.at" }, { "id": "action_provider_google_analytics", "technology": "Google Analytics", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/cashbackonline.at" }, { "id": "action_provider_google_doubleclick", "technology": "Google DoubleClick", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/cashbackonline.at" }, { "id": "action_google_tag_manager", "technology": "Google Tag Manager", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/cashbackonline.at" }, { "id": "action_provider_google_tag_manager", "technology": "Google Tag Manager", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/cashbackonline.at" }, { "id": "action_tracking_google_tag_manager", "technology": "Google Tag Manager", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/cashbackonline.at" }, { "id": "action_provider_accounts.google.com", "technology": "accounts.google.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_google.com", "technology": "google.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_drupal", "technology": "Drupal", "priority": "mittel", "owner": "Webbetrieb/IT", "action": "CMS, Themes, Plugins und sichtbare Versionshinweise aktualisieren, unnötige Plugins entfernen und Re-Scan nach Deployment ausführen.", "guide_url": "https://saferpage.de/guides/sichtbare-versionen-und-cves-beheben" } ], "cms_playbooks": [ { "id": "drupal", "platform": "Drupal", "summary": "Drupal-Module, Theme-Libraries, Consent-Module und Aggregation/Caches können Datenschutzsignale verändern.", "steps": [ "Drupal Core und contrib-Module aktualisieren; Security Advisories und Composer-Lockfile prüfen.", "Libraries, Theme Attachments und Blöcke auf externe Skripte, Fonts, Maps, Videos und Pixel prüfen.", "Consent- und Cookie-Module mit Erstaufruf/Ablehnen/Akzeptieren/GPC gegen SaferPage testen.", "Cache-, CDN- und Reverse-Proxy-Regeln nach Änderungen invalidieren und Header erneut prüfen." ], "acceptance": [ "Keine unsupported/stale Technology-Hinweise.", "Drittanbieter sind im Anbieterregister erklärt.", "Nachweise aus Re-Scan und Exportpaket abgelegt." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=cashbackonline.at" } ], "infrastructure": { "risk_level": "low", "positive_signals": [ "Moderne TLS-Version aktiv: TLSv1.3." ], "findings": [ { "id": "dmarc_missing", "title": "DMARC fehlt", "public": true, "category": "email", "severity": "info", "recommendation": "DMARC setzen, damit E-Mail-Spoofing der Domain besser eingeschränkt wird." }, { "id": "caa_missing", "title": "CAA-Record fehlt", "public": true, "category": "dns", "severity": "info", "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen." } ] }, "links": { "technology_center": "https://saferpage.de/technik/cashbackonline.at", "json": "https://saferpage.de/technik/cashbackonline.at/export", "csv": "https://saferpage.de/technik/cashbackonline.at/export-csv", "markdown": "https://saferpage.de/technik/cashbackonline.at/stack-md", "report": "https://saferpage.de/cashbackonline.at", "vendors": "https://saferpage.de/anbieter/cashbackonline.at", "consent": "https://saferpage.de/consent/cashbackonline.at", "findings": "https://saferpage.de/befunde/cashbackonline.at", "evidence": "https://saferpage.de/nachweise/cashbackonline.at" }, "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet." }