{ "schema": "https://saferpage.de/schemas/technology-detection.v1", "generated_at": "2026-06-29T19:30:32+00:00", "domain": "gps.graz.at", "available": true, "scan": { "id": "e96766a4-ea6c-4345-ba84-7d9b2dacac4f", "checked_at": "2026-06-29 14:21:29.37097+02" }, "summary": "gps.graz.at: 15 sichtbare Technik-/Anbietersignale, 3 mit hoher Datenschutzrelevanz, 1 CMS-/Shop-Hinweis(e).", "metrics": { "technology_count": 15, "high_privacy_relevance_count": 3, "cms_or_shop_count": 1, "external_script_count": 1, "request_count": 47, "third_party_domain_count": 10, "infrastructure_finding_count": 1 }, "signals": { "server_header": "nginx", "generator": "ico-cms", "x_powered_by": "", "asset_hosts": [ "webcachex-eu.datareporter.eu", "www.graz.at" ], "external_scripts": [ "https://webcachex-eu.datareporter.eu/loader/v2/cmp-load.js?url=a86c522e-04a6-4a92-a717-ec235e603cf7.r3PtlpQZ5q4q.Bz9" ], "tls_version": "TLSv1.3", "certificate_issuer": "YR1", "renderer": "playwright-chromium" }, "category_counts": { "other": 7, "Analytics/Werbung": 1, "Schriften": 1, "cdn": 1, "CMS": 1, "Server": 2, "social_tracking": 1, "Bibliothek": 1 }, "technologies": [ { "id": "provider_89418.global.siteimproveanalytics.io", "name": "89418.global.siteimproveanalytics.io", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "89418.global.siteimproveanalytics.io", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "meta_facebook_pixel", "name": "Meta/Facebook Pixel", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Script-Domain: connect.facebook.net" ], "source": "technology_analysis" }, { "id": "provider_siteimproveanalytics.com", "name": "siteimproveanalytics.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "siteimproveanalytics.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_google_fonts", "name": "Google Fonts", "category": "fonts", "category_label": "Schriften", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "fonts.gstatic.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_google_static", "name": "Google Static", "category": "cdn", "category_label": "cdn", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "gstatic.com", "3 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_translate-pa.googleapis.com", "name": "translate-pa.googleapis.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "translate-pa.googleapis.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_translate.google.com", "name": "translate.google.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "translate.google.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_translate.googleapis.com", "name": "translate.googleapis.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "translate.googleapis.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "ico-cms", "name": "ico-cms", "category": "cms", "category_label": "CMS", "confidence": "high", "risk_score": 52, "privacy_relevance": "mittel", "evidence": [ "Meta generator: ico-cms" ], "source": "technology_analysis" }, { "id": "nginx", "name": "nginx", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx" ], "source": "technology_analysis" }, { "id": "server_header", "name": "nginx", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx" ], "source": "technology_signals" }, { "id": "provider_meta_facebook", "name": "Meta/Facebook", "category": "social_tracking", "category_label": "social_tracking", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "connect.facebook.net", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "jquery", "name": "jQuery", "category": "library", "category_label": "Bibliothek", "confidence": "high", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "Signal: jquery-", "Asset: /common/scripts/jquery-3.1.1.min.js?v=20260506" ], "source": "technology_analysis" }, { "id": "provider_webcache-eu.datareporter.eu", "name": "webcache-eu.datareporter.eu", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "webcache-eu.datareporter.eu", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_webcachex-eu.datareporter.eu", "name": "webcachex-eu.datareporter.eu", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "webcachex-eu.datareporter.eu", "1 Request(s)" ], "source": "browser_analysis" } ], "operator_actions": [ { "id": "action_provider_89418.global.siteimproveanalytics.io", "technology": "89418.global.siteimproveanalytics.io", "priority": "hoch", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_meta_facebook_pixel", "technology": "Meta/Facebook Pixel", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/gps.graz.at" }, { "id": "action_provider_siteimproveanalytics.com", "technology": "siteimproveanalytics.com", "priority": "hoch", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_google_fonts", "technology": "Google Fonts", "priority": "mittel", "owner": "Webentwicklung/Datenschutz", "action": "Remote-Schriften lokal hosten oder Zweck, Anbieter, Transfer und Consent-/Rechtsgrundlage transparent dokumentieren.", "guide_url": "https://saferpage.de/guides/google-dienste-datenschutzfreundlich-einbinden" }, { "id": "action_provider_google_static", "technology": "Google Static", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_translate-pa.googleapis.com", "technology": "translate-pa.googleapis.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_translate.google.com", "technology": "translate.google.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_translate.googleapis.com", "technology": "translate.googleapis.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_ico-cms", "technology": "ico-cms", "priority": "mittel", "owner": "Webbetrieb/IT", "action": "CMS, Themes, Plugins und sichtbare Versionshinweise aktualisieren, unnötige Plugins entfernen und Re-Scan nach Deployment ausführen.", "guide_url": "https://saferpage.de/guides/sichtbare-versionen-und-cves-beheben" }, { "id": "action_nginx", "technology": "nginx", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/gps.graz.at" } ], "cms_playbooks": [ { "id": "generic_cms", "platform": "CMS / Website-Deployment", "summary": "SaferPage erkennt ein CMS-/Website-Signal, aber keine sichere Plattform. Betreiber sollten Patchstand, Erweiterungen, Templates, Consent und externe Dienste manuell abgleichen.", "steps": [ "CMS, Theme, Plugins/Extensions, Page Builder, Tag Manager und Hosting/CDN inventarisieren.", "Nicht notwendige Skripte, Cookies, Fonts, Maps, Videos und Pixel vor Consent blockieren.", "Datenschutzerklärung, Anbieterregister, Cookie-Liste und Impressum gegen die reale Browser-Evidence abgleichen.", "Nach jeder Änderung Re-Scan ausführen und Exportpaket als Nachweis sichern." ], "acceptance": [ "Plattform und Erweiterungen sind dokumentiert.", "Consent- und Anbieterbefunde sind geschlossen oder begründet.", "Re-Scan zeigt keine neuen kritischen Signale." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=gps.graz.at" } ], "infrastructure": { "risk_level": "low", "positive_signals": [ "Moderne TLS-Version aktiv: TLSv1.3.", "HSTS ist aktiv." ], "findings": [ { "id": "caa_missing", "title": "CAA-Record fehlt", "public": true, "category": "dns", "severity": "info", "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen." } ] }, "links": { "technology_center": "https://saferpage.de/technik/gps.graz.at", "json": "https://saferpage.de/technik/gps.graz.at/export", "csv": "https://saferpage.de/technik/gps.graz.at/export-csv", "markdown": "https://saferpage.de/technik/gps.graz.at/stack-md", "report": "https://saferpage.de/gps.graz.at", "vendors": "https://saferpage.de/anbieter/gps.graz.at", "consent": "https://saferpage.de/consent/gps.graz.at", "findings": "https://saferpage.de/befunde/gps.graz.at", "evidence": "https://saferpage.de/nachweise/gps.graz.at" }, "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet." }