{
    "schema": "https://saferpage.de/schemas/technology-detection.v1",
    "generated_at": "2026-07-01T07:10:09+00:00",
    "domain": "goldwell.ch",
    "available": true,
    "scan": {
        "id": "2bf9d5ac-b1ca-4ecf-a511-dfe9bbdbbc47",
        "checked_at": "2026-07-01 04:57:02.69644+02"
    },
    "summary": "goldwell.ch: 18 sichtbare Technik-/Anbietersignale, 1 mit hoher Datenschutzrelevanz, 0 CMS-/Shop-Hinweis(e).",
    "metrics": {
        "technology_count": 18,
        "high_privacy_relevance_count": 1,
        "cms_or_shop_count": 0,
        "external_script_count": 0,
        "request_count": 219,
        "third_party_domain_count": 14,
        "infrastructure_finding_count": 1
    },
    "signals": {
        "server_header": "Apache",
        "generator": "",
        "x_powered_by": "",
        "asset_hosts": [
            "assets.adobedtm.com",
            "fontplus.aem.kao.com",
            "www.goldwell.com"
        ],
        "external_scripts": [],
        "tls_version": "TLSv1.3",
        "certificate_issuer": "Amazon RSA 2048 M04",
        "renderer": "playwright-chromium"
    },
    "category_counts": {
        "Analytics/Werbung": 1,
        "Schriften": 1,
        "cdn": 1,
        "other": 12,
        "Server": 2,
        "video_embed": 1
    },
    "technologies": [
        {
            "id": "tracking_google_analytics_4",
            "name": "Google Analytics 4",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "google_analytics_4",
                "g-ImageTextHP"
            ],
            "source": "privacy_analysis"
        },
        {
            "id": "provider_google_fonts",
            "name": "Google Fonts",
            "category": "fonts",
            "category_label": "Schriften",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "fonts.gstatic.com",
                "10 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google_static",
            "name": "Google Static",
            "category": "cdn",
            "category_label": "cdn",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "gstatic.com",
                "19 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google.com",
            "name": "google.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "google.com",
                "11 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "apache",
            "name": "Apache",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: Apache"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "server_header",
            "name": "Apache",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: Apache"
            ],
            "source": "technology_signals"
        },
        {
            "id": "provider_cdn.c360a.salesforce.com",
            "name": "cdn.c360a.salesforce.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "cdn.c360a.salesforce.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_cdn.cookielaw.org",
            "name": "cdn.cookielaw.org",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "cdn.cookielaw.org",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_youtube",
            "name": "YouTube",
            "category": "video_embed",
            "category_label": "video_embed",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "youtube.com",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_api.flockler.app",
            "name": "api.flockler.app",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "api.flockler.app",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_assets.adobedtm.com",
            "name": "assets.adobedtm.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "assets.adobedtm.com",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_fontplus.aem.kao.com",
            "name": "fontplus.aem.kao.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "fontplus.aem.kao.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_goldwell.com",
            "name": "goldwell.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "goldwell.com",
                "50 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_kao-h.assetsadobe3.com",
            "name": "kao-h.assetsadobe3.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "kao-h.assetsadobe3.com",
                "86 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_kaosalon.my.site.com",
            "name": "kaosalon.my.site.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "kaosalon.my.site.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_media-api.flockler.com",
            "name": "media-api.flockler.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "media-api.flockler.com",
                "16 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_plugins.flockler.com",
            "name": "plugins.flockler.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "plugins.flockler.com",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_social-proxy.flocklr.com",
            "name": "social-proxy.flocklr.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "social-proxy.flocklr.com",
                "14 Request(s)"
            ],
            "source": "browser_analysis"
        }
    ],
    "operator_actions": [
        {
            "id": "action_tracking_google_analytics_4",
            "technology": "Google Analytics 4",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/goldwell.ch"
        },
        {
            "id": "action_provider_google_fonts",
            "technology": "Google Fonts",
            "priority": "mittel",
            "owner": "Webentwicklung/Datenschutz",
            "action": "Remote-Schriften lokal hosten oder Zweck, Anbieter, Transfer und Consent-/Rechtsgrundlage transparent dokumentieren.",
            "guide_url": "https://saferpage.de/guides/google-dienste-datenschutzfreundlich-einbinden"
        },
        {
            "id": "action_provider_google_static",
            "technology": "Google Static",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_google.com",
            "technology": "google.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_apache",
            "technology": "Apache",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/goldwell.ch"
        },
        {
            "id": "action_server_header",
            "technology": "Apache",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/goldwell.ch"
        },
        {
            "id": "action_provider_cdn.c360a.salesforce.com",
            "technology": "cdn.c360a.salesforce.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_cdn.cookielaw.org",
            "technology": "cdn.cookielaw.org",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_youtube",
            "technology": "YouTube",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_api.flockler.app",
            "technology": "api.flockler.app",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        }
    ],
    "cms_playbooks": [
        {
            "id": "generic",
            "platform": "Allgemeines Website-Deployment",
            "summary": "Im passiven Check wurde kein eindeutiges CMS erkannt. Trotzdem sollten Betreiber Release, Consent, Drittanbieter, Security-Header und Nachweise wie bei einem CMS-Update behandeln.",
            "steps": [
                "Deployment-Quelle, Hosting/CDN, externe Skripte, Consent-Tool und wichtige Templates inventarisieren.",
                "Alle nicht notwendigen Drittanbieter vor Einwilligung blockieren und Anbieterzwecke dokumentieren.",
                "Security-Header, HTTPS/HSTS, Referrer-Policy, CSP und Cookie-Attribute prüfen.",
                "Nach Änderungen Re-Scan, Screenshot, JSON/CSV und Fix-Guides ablegen."
            ],
            "acceptance": [
                "Release-Änderung ist nachvollziehbar.",
                "Drittanbieter-/Cookie-Abgleich ist aktualisiert.",
                "Re-Scan und Nachweise sind verlinkt."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=goldwell.ch"
        }
    ],
    "infrastructure": {
        "risk_level": "low",
        "positive_signals": [
            "Mehrere IP-Adressen gefunden: Hinweis auf redundante Infrastruktur oder CDN.",
            "Moderne TLS-Version aktiv: TLSv1.3.",
            "DMARC ist für die Domain vorhanden."
        ],
        "findings": [
            {
                "id": "caa_missing",
                "title": "CAA-Record fehlt",
                "public": true,
                "category": "dns",
                "severity": "info",
                "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen."
            }
        ]
    },
    "links": {
        "technology_center": "https://saferpage.de/technik/goldwell.ch",
        "json": "https://saferpage.de/technik/goldwell.ch/export",
        "csv": "https://saferpage.de/technik/goldwell.ch/export-csv",
        "markdown": "https://saferpage.de/technik/goldwell.ch/stack-md",
        "report": "https://saferpage.de/goldwell.ch",
        "vendors": "https://saferpage.de/anbieter/goldwell.ch",
        "consent": "https://saferpage.de/consent/goldwell.ch",
        "findings": "https://saferpage.de/befunde/goldwell.ch",
        "evidence": "https://saferpage.de/nachweise/goldwell.ch"
    },
    "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet."
}
