{ "schema": "https://saferpage.de/schemas/technology-detection.v1", "generated_at": "2026-06-19T18:23:40+00:00", "domain": "dietester.de", "available": true, "scan": { "id": "31263ab9-a3d8-4f9d-bbc3-4b225cea09a3", "checked_at": "2026-06-19 17:14:18.453+02" }, "summary": "dietester.de: 18 sichtbare Technik-/Anbietersignale, 3 mit hoher Datenschutzrelevanz, 0 CMS-/Shop-Hinweis(e).", "metrics": { "technology_count": 18, "high_privacy_relevance_count": 3, "cms_or_shop_count": 0, "external_script_count": 0, "request_count": 416, "third_party_domain_count": 15, "infrastructure_finding_count": 2 }, "signals": { "server_header": "Vercel", "generator": "", "x_powered_by": "Next.js", "asset_hosts": [ "cdn.usefathom.com", "dietester.de" ], "external_scripts": [], "tls_version": "TLSv1.3", "certificate_issuer": "YR2", "renderer": "playwright-chromium" }, "category_counts": { "Analytics/Werbung": 3, "other": 10, "Server": 2, "social_tracking": 2, "JavaScript": 1 }, "technologies": [ { "id": "linkedin_insight_tag", "name": "LinkedIn Insight Tag", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Script-Domain: snap.licdn.com" ], "source": "technology_analysis" }, { "id": "tracking_meta_pixel", "name": "Meta Pixel", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "meta_pixel", "756988357448699" ], "source": "privacy_analysis" }, { "id": "meta_facebook_pixel", "name": "Meta/Facebook Pixel", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Script-Domain: connect.facebook.net", "Script-Domain: facebook.com/tr" ], "source": "technology_analysis" }, { "id": "provider_ajax.googleapis.com", "name": "ajax.googleapis.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "ajax.googleapis.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_cms.dietester.de", "name": "cms.dietester.de", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 52, "privacy_relevance": "mittel", "evidence": [ "cms.dietester.de", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "vercel", "name": "Vercel", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: Vercel" ], "source": "technology_analysis" }, { "id": "server_header", "name": "Vercel", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: Vercel" ], "source": "technology_signals" }, { "id": "provider_browser.sentry-cdn.com", "name": "browser.sentry-cdn.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "browser.sentry-cdn.com", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_cdn.usefathom.com", "name": "cdn.usefathom.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "cdn.usefathom.com", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_linkedin", "name": "LinkedIn", "category": "social_tracking", "category_label": "social_tracking", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "px4.ads.linkedin.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_meta_facebook", "name": "Meta/Facebook", "category": "social_tracking", "category_label": "social_tracking", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "facebook.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "next.js", "name": "Next.js", "category": "js_framework", "category_label": "JavaScript", "confidence": "medium", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "Signal: /_next/static/" ], "source": "technology_analysis" }, { "id": "provider_cda-verlag.com", "name": "cda-verlag.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "cda-verlag.com", "12 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_frog.wix.com", "name": "frog.wix.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "frog.wix.com", "26 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_panorama.wixapps.net", "name": "panorama.wixapps.net", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "panorama.wixapps.net", "17 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_siteassets.parastorage.com", "name": "siteassets.parastorage.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "siteassets.parastorage.com", "16 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_static.parastorage.com", "name": "static.parastorage.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "static.parastorage.com", "266 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_static.wixstatic.com", "name": "static.wixstatic.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "static.wixstatic.com", "28 Request(s)" ], "source": "browser_analysis" } ], "operator_actions": [ { "id": "action_linkedin_insight_tag", "technology": "LinkedIn Insight Tag", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/dietester.de" }, { "id": "action_tracking_meta_pixel", "technology": "Meta Pixel", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/dietester.de" }, { "id": "action_meta_facebook_pixel", "technology": "Meta/Facebook Pixel", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/dietester.de" }, { "id": "action_provider_ajax.googleapis.com", "technology": "ajax.googleapis.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_cms.dietester.de", "technology": "cms.dietester.de", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_vercel", "technology": "Vercel", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/dietester.de" }, { "id": "action_server_header", "technology": "Vercel", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/dietester.de" }, { "id": "action_provider_browser.sentry-cdn.com", "technology": "browser.sentry-cdn.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_cdn.usefathom.com", "technology": "cdn.usefathom.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_linkedin", "technology": "LinkedIn", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" } ], "cms_playbooks": [ { "id": "wix", "platform": "Wix", "summary": "Wix-Apps, Tracking & Analytics, Cookie Banner und eingebettete Drittanbieter müssen im Wix-Dashboard geprüft werden.", "steps": [ "Wix Apps, Marketing Integrations, Tracking & Analytics und eingebetteten Code inventarisieren.", "Wix Cookie Banner/Consent so konfigurieren, dass Analytics/Ads erst nach Einwilligung starten.", "Formulare, Chat, Newsletter, Maps und Buchungsfunktionen in Datenschutzerklärung und Anbieterregister erklären.", "Nach Veröffentlichung SaferPage erneut scannen und Drittanbieter-/Cookie-Liste vergleichen." ], "acceptance": [ "Wix-Integrationen sind dokumentiert.", "Consent-Status verändert Trackingkontakte korrekt.", "Drittanbieter sind in der Notice sichtbar." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=dietester.de" }, { "id": "nextjs", "platform": "Next.js / React App", "summary": "Bei modernen Frontends liegen Tracking, Fonts, Consent und Security-Header oft in Build, Middleware, Tag Manager und CDN-Konfiguration verteilt.", "steps": [ "App Router/Pages, Layouts, Script-Komponenten, Tag Manager und Consent-Initialisierung prüfen.", "Consent Defaults vor Analytics-/Ads-Skripten setzen; third-party Scripts mit strategy und Consent-Gate kontrollieren.", "Security-Header, Referrer-Policy, CSP und HSTS in Middleware, next.config oder Reverse Proxy setzen.", "Build-Artefakte, Sourcemaps, externe Fonts und CDN-Hosts dokumentieren und nach Deployment erneut scannen." ], "acceptance": [ "Scripts sind consent-gated.", "Header sind im Live-Response sichtbar.", "Drittanbieter-Matrix passt zum Release." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=dietester.de" }, { "id": "generic_cms", "platform": "CMS / Website-Deployment", "summary": "SaferPage erkennt ein CMS-/Website-Signal, aber keine sichere Plattform. Betreiber sollten Patchstand, Erweiterungen, Templates, Consent und externe Dienste manuell abgleichen.", "steps": [ "CMS, Theme, Plugins/Extensions, Page Builder, Tag Manager und Hosting/CDN inventarisieren.", "Nicht notwendige Skripte, Cookies, Fonts, Maps, Videos und Pixel vor Consent blockieren.", "Datenschutzerklärung, Anbieterregister, Cookie-Liste und Impressum gegen die reale Browser-Evidence abgleichen.", "Nach jeder Änderung Re-Scan ausführen und Exportpaket als Nachweis sichern." ], "acceptance": [ "Plattform und Erweiterungen sind dokumentiert.", "Consent- und Anbieterbefunde sind geschlossen oder begründet.", "Re-Scan zeigt keine neuen kritischen Signale." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=dietester.de" } ], "infrastructure": { "risk_level": "low", "positive_signals": [ "Moderne TLS-Version aktiv: TLSv1.3.", "HSTS ist aktiv." ], "findings": [ { "id": "dmarc_missing", "title": "DMARC fehlt", "public": true, "category": "email", "severity": "info", "recommendation": "DMARC setzen, damit E-Mail-Spoofing der Domain besser eingeschränkt wird." }, { "id": "caa_missing", "title": "CAA-Record fehlt", "public": true, "category": "dns", "severity": "info", "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen." } ] }, "links": { "technology_center": "https://saferpage.de/technik/dietester.de", "json": "https://saferpage.de/technik/dietester.de/export", "csv": "https://saferpage.de/technik/dietester.de/export-csv", "markdown": "https://saferpage.de/technik/dietester.de/stack-md", "report": "https://saferpage.de/dietester.de", "vendors": "https://saferpage.de/anbieter/dietester.de", "consent": "https://saferpage.de/consent/dietester.de", "findings": "https://saferpage.de/befunde/dietester.de", "evidence": "https://saferpage.de/nachweise/dietester.de" }, "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet." }