{ "schema": "https://saferpage.de/schemas/technology-detection.v1", "generated_at": "2026-06-30T15:11:42+00:00", "domain": "evi.gv.at", "available": true, "scan": { "id": "5cbb8567-5f5c-4afb-91fd-38a566bd5b0b", "checked_at": "2026-06-30 13:47:31.168153+02" }, "summary": "evi.gv.at: 5 sichtbare Technik-/Anbietersignale, 0 mit hoher Datenschutzrelevanz, 0 CMS-/Shop-Hinweis(e).", "metrics": { "technology_count": 5, "high_privacy_relevance_count": 0, "cms_or_shop_count": 0, "external_script_count": 20, "request_count": 55, "third_party_domain_count": 2, "infrastructure_finding_count": 1 }, "signals": { "server_header": "nginx", "generator": "", "x_powered_by": "", "asset_hosts": [ "assets.evi.gv.at" ], "external_scripts": [ "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/072ab584-8438627a9f508718.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/a5ea5cdc-24424b8e6b02f21f.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/3663-2136804cf6b0fc8b.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/main-app-fac59d4af9013e34.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/27784ddd-9520322689be28d7.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/9521-cb38a4d054002cec.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/5007-dd699888d23d50bf.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/7204-9c98648d3ceb7cb9.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/1916-383a6203d1daaa04.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/5966-b96d2ab48582d934.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/8781-61e8b5f6566d91b6.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/9698-dc407f184c8cf80d.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/9463-a51fee3cebe72a7c.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/1850-b2eab2608ae7bf7f.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/5098-01a2ef138d06207e.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/691-a4639b3ec75f6d7b.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/app/(markdown)/layout-c50c3b0f04acfa16.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/app/(app)/error-5ec457039fe1a5ed.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/app/(archiv)/not-found-42fe382cf875eedd.js?dpl=20260629.3", "https://assets.evi.gv.at/assets/20260629.3/_next/static/chunks/7029-e26731cf7c897b4d.js?dpl=20260629.3" ], "tls_version": "TLSv1.3", "certificate_issuer": "GeoTrust TLS RSA CA G1", "renderer": "playwright-chromium" }, "category_counts": { "Server": 2, "JavaScript": 1, "other": 2 }, "technologies": [ { "id": "nginx", "name": "nginx", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx" ], "source": "technology_analysis" }, { "id": "server_header", "name": "nginx", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx" ], "source": "technology_signals" }, { "id": "next.js", "name": "Next.js", "category": "js_framework", "category_label": "JavaScript", "confidence": "high", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "Signal: /_next/static/" ], "source": "technology_analysis" }, { "id": "provider_assets.evi.gv.at", "name": "assets.evi.gv.at", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "assets.evi.gv.at", "33 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_eu-assets.i.posthog.com", "name": "eu-assets.i.posthog.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "eu-assets.i.posthog.com", "4 Request(s)" ], "source": "browser_analysis" } ], "operator_actions": [ { "id": "action_nginx", "technology": "nginx", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/evi.gv.at" }, { "id": "action_server_header", "technology": "nginx", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/evi.gv.at" }, { "id": "action_next.js", "technology": "Next.js", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_assets.evi.gv.at", "technology": "assets.evi.gv.at", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_eu-assets.i.posthog.com", "technology": "eu-assets.i.posthog.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" } ], "cms_playbooks": [ { "id": "nextjs", "platform": "Next.js / React App", "summary": "Bei modernen Frontends liegen Tracking, Fonts, Consent und Security-Header oft in Build, Middleware, Tag Manager und CDN-Konfiguration verteilt.", "steps": [ "App Router/Pages, Layouts, Script-Komponenten, Tag Manager und Consent-Initialisierung prüfen.", "Consent Defaults vor Analytics-/Ads-Skripten setzen; third-party Scripts mit strategy und Consent-Gate kontrollieren.", "Security-Header, Referrer-Policy, CSP und HSTS in Middleware, next.config oder Reverse Proxy setzen.", "Build-Artefakte, Sourcemaps, externe Fonts und CDN-Hosts dokumentieren und nach Deployment erneut scannen." ], "acceptance": [ "Scripts sind consent-gated.", "Header sind im Live-Response sichtbar.", "Drittanbieter-Matrix passt zum Release." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=evi.gv.at" } ], "infrastructure": { "risk_level": "low", "positive_signals": [ "Moderne TLS-Version aktiv: TLSv1.3.", "HSTS ist aktiv.", "DMARC ist für die Domain vorhanden." ], "findings": [ { "id": "caa_missing", "title": "CAA-Record fehlt", "public": true, "category": "dns", "severity": "info", "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen." } ] }, "links": { "technology_center": "https://saferpage.de/technik/evi.gv.at", "json": "https://saferpage.de/technik/evi.gv.at/export", "csv": "https://saferpage.de/technik/evi.gv.at/export-csv", "markdown": "https://saferpage.de/technik/evi.gv.at/stack-md", "report": "https://saferpage.de/evi.gv.at", "vendors": "https://saferpage.de/anbieter/evi.gv.at", "consent": "https://saferpage.de/consent/evi.gv.at", "findings": "https://saferpage.de/befunde/evi.gv.at", "evidence": "https://saferpage.de/nachweise/evi.gv.at" }, "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet." }