{
    "schema": "https://saferpage.de/schemas/technology-detection.v1",
    "generated_at": "2026-07-02T22:12:41+00:00",
    "domain": "gr-ref.ch",
    "available": true,
    "scan": {
        "id": "bd5639a0-db4e-4b77-8b85-09bf656676c0",
        "checked_at": "2026-07-02 19:19:18.331979+02"
    },
    "summary": "gr-ref.ch: 22 sichtbare Technik-/Anbietersignale, 7 mit hoher Datenschutzrelevanz, 2 CMS-/Shop-Hinweis(e).",
    "metrics": {
        "technology_count": 22,
        "high_privacy_relevance_count": 7,
        "cms_or_shop_count": 2,
        "external_script_count": 2,
        "request_count": 77,
        "third_party_domain_count": 14,
        "infrastructure_finding_count": 1
    },
    "signals": {
        "server_header": "Apache",
        "generator": "TYPO3 CMS",
        "x_powered_by": "",
        "asset_hosts": [
            "use.typekit.net",
            "ajax.googleapis.com",
            "code.jquery.com",
            "www.googletagmanager.com",
            "gr-ref.ch"
        ],
        "external_scripts": [
            "https://use.typekit.net/qom3tqu.js",
            "https://code.jquery.com/jquery-3.7.1.min.js"
        ],
        "tls_version": "TLSv1.3",
        "certificate_issuer": "R13",
        "renderer": "playwright-chromium"
    },
    "category_counts": {
        "Analytics/Werbung": 6,
        "tag_manager": 1,
        "Schriften": 1,
        "other": 8,
        "CMS": 2,
        "Server": 2,
        "Bibliothek": 2
    },
    "technologies": [
        {
            "id": "google_analytics",
            "name": "Google Analytics",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "medium",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: gtag("
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_google_analytics",
            "name": "Google Analytics",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "region1.google-analytics.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "google_tag_manager",
            "name": "Google Tag Manager",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: googletagmanager.com",
                "Script-Domain: googletagmanager.com"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_google_tag_manager",
            "name": "Google Tag Manager",
            "category": "tag_manager",
            "category_label": "tag_manager",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "googletagmanager.com",
                "3 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "tracking_google_tag_manager",
            "name": "Google Tag Manager",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "google_tag_manager",
                "GTM-MZ32JM9H"
            ],
            "source": "privacy_analysis"
        },
        {
            "id": "matomo",
            "name": "Matomo",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: matomo.js",
                "Script-Domain: matomo"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_matomo",
            "name": "Matomo",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "matomo.exigo.ch",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google_fonts",
            "name": "Google Fonts",
            "category": "fonts",
            "category_label": "Schriften",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "fonts.gstatic.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ajax.googleapis.com",
            "name": "ajax.googleapis.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "ajax.googleapis.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "typo3",
            "name": "TYPO3",
            "category": "cms",
            "category_label": "CMS",
            "confidence": "high",
            "risk_score": 52,
            "privacy_relevance": "mittel",
            "evidence": [
                "Meta generator: TYPO3 CMS",
                "Signal: name=\"generator\" content=\"typo3"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "wordpress",
            "name": "WordPress",
            "category": "cms",
            "category_label": "CMS",
            "confidence": "medium",
            "risk_score": 52,
            "privacy_relevance": "mittel",
            "evidence": [
                "Signal: wp-content/"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "apache",
            "name": "Apache",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: Apache"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "server_header",
            "name": "Apache",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: Apache"
            ],
            "source": "technology_signals"
        },
        {
            "id": "tailwind_css",
            "name": "Tailwind CSS",
            "category": "library",
            "category_label": "Bibliothek",
            "confidence": "medium",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Signal: tailwind"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_code.jquery.com",
            "name": "code.jquery.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "code.jquery.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_d10rdyp01sn3kp.cloudfront.net",
            "name": "d10rdyp01sn3kp.cloudfront.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "d10rdyp01sn3kp.cloudfront.net",
                "5 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_guidle.com",
            "name": "guidle.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "guidle.com",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ik.imagekit.io",
            "name": "ik.imagekit.io",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "ik.imagekit.io",
                "6 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "jquery",
            "name": "jQuery",
            "category": "library",
            "category_label": "Bibliothek",
            "confidence": "high",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Signal: jquery.min.js",
                "Asset: https://code.jquery.com/jquery-3.7.1.min.js"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_microsite.guidle.com",
            "name": "microsite.guidle.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "microsite.guidle.com",
                "17 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_p.typekit.net",
            "name": "p.typekit.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "p.typekit.net",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_use.typekit.net",
            "name": "use.typekit.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "use.typekit.net",
                "7 Request(s)"
            ],
            "source": "browser_analysis"
        }
    ],
    "operator_actions": [
        {
            "id": "action_google_analytics",
            "technology": "Google Analytics",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/gr-ref.ch"
        },
        {
            "id": "action_provider_google_analytics",
            "technology": "Google Analytics",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/gr-ref.ch"
        },
        {
            "id": "action_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/gr-ref.ch"
        },
        {
            "id": "action_provider_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/gr-ref.ch"
        },
        {
            "id": "action_tracking_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/gr-ref.ch"
        },
        {
            "id": "action_matomo",
            "technology": "Matomo",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/gr-ref.ch"
        },
        {
            "id": "action_provider_matomo",
            "technology": "Matomo",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/gr-ref.ch"
        },
        {
            "id": "action_provider_google_fonts",
            "technology": "Google Fonts",
            "priority": "mittel",
            "owner": "Webentwicklung/Datenschutz",
            "action": "Remote-Schriften lokal hosten oder Zweck, Anbieter, Transfer und Consent-/Rechtsgrundlage transparent dokumentieren.",
            "guide_url": "https://saferpage.de/guides/google-dienste-datenschutzfreundlich-einbinden"
        },
        {
            "id": "action_provider_ajax.googleapis.com",
            "technology": "ajax.googleapis.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_typo3",
            "technology": "TYPO3",
            "priority": "mittel",
            "owner": "Webbetrieb/IT",
            "action": "CMS, Themes, Plugins und sichtbare Versionshinweise aktualisieren, unnötige Plugins entfernen und Re-Scan nach Deployment ausführen.",
            "guide_url": "https://saferpage.de/guides/sichtbare-versionen-und-cves-beheben"
        }
    ],
    "cms_playbooks": [
        {
            "id": "typo3",
            "platform": "TYPO3",
            "summary": "TYPO3-Extensions, Sitepackage, Fluid-Templates, Consent-Extension und Caching müssen zusammen geprüft werden.",
            "steps": [
                "TYPO3 Core und Extensions gemäß Wartungsstatus aktualisieren; Composer-/Extension-Lockfile sichern.",
                "Sitepackage und Fluid-Templates nach externen Fonts, Maps, Videos, Analytics und Tag-Manager-Snippets durchsuchen.",
                "Consent-Extension so konfigurieren, dass externe Skripte und Iframes erst nach passender Einwilligung laden.",
                "Security-Header und TLS/HSTS auf Webserver-/Proxy-Ebene testen; TYPO3-Caches nach Änderung leeren."
            ],
            "acceptance": [
                "Extension-Liste und Wartungsstatus dokumentiert.",
                "Pflichtseiten werden im Seiteninventar gefunden.",
                "Consent-Zustände sind im Re-Scan stabil."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=gr-ref.ch"
        },
        {
            "id": "wordpress",
            "platform": "WordPress",
            "summary": "Plugins, Theme, Core, Tag Manager, Consent-Plugin und Caching gemeinsam prüfen; WordPress-Updates ändern oft Cookies, Skripte und externe Requests.",
            "steps": [
                "WordPress Core, aktive Themes und alle Plugins in Staging aktualisieren; nicht genutzte Plugins entfernen.",
                "Consent-/Cookie-Plugin gegen den SaferPage-Consent-Test prüfen: Erstaufruf, Ablehnen, Akzeptieren und GPC separat testen.",
                "Google Fonts, Maps, YouTube, reCAPTCHA, Analytics und Pixel in Theme, Page Builder und Tag Manager suchen und vor Consent blockieren.",
                "Security-Header, HSTS, Referrer-Policy und CSP im Hosting, Nginx/Apache oder Security-Plugin setzen und nach Cache-Purge erneut prüfen."
            ],
            "acceptance": [
                "Keine neuen Trackingkontakte vor Consent.",
                "Plugin-/Theme-Versionen sind dokumentiert.",
                "Kurzreport, Technik-Center und Fix-Guides nach Re-Scan aktualisiert."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=gr-ref.ch"
        }
    ],
    "infrastructure": {
        "risk_level": "low",
        "positive_signals": [
            "Moderne TLS-Version aktiv: TLSv1.3.",
            "HSTS ist aktiv.",
            "DMARC ist für die Domain vorhanden."
        ],
        "findings": [
            {
                "id": "caa_missing",
                "title": "CAA-Record fehlt",
                "public": true,
                "category": "dns",
                "severity": "info",
                "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen."
            }
        ]
    },
    "links": {
        "technology_center": "https://saferpage.de/technik/gr-ref.ch",
        "json": "https://saferpage.de/technik/gr-ref.ch/export",
        "csv": "https://saferpage.de/technik/gr-ref.ch/export-csv",
        "markdown": "https://saferpage.de/technik/gr-ref.ch/stack-md",
        "report": "https://saferpage.de/gr-ref.ch",
        "vendors": "https://saferpage.de/anbieter/gr-ref.ch",
        "consent": "https://saferpage.de/consent/gr-ref.ch",
        "findings": "https://saferpage.de/befunde/gr-ref.ch",
        "evidence": "https://saferpage.de/nachweise/gr-ref.ch"
    },
    "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet."
}
