{ "schema": "https://saferpage.de/schemas/technology-detection.v1", "generated_at": "2026-06-19T10:16:21+00:00", "domain": "haufe.de", "available": true, "scan": { "id": "f49bd06a-6e83-4791-b978-4b75c5cec1ed", "checked_at": "2026-06-19 09:28:35.481979+02" }, "summary": "haufe.de: 17 sichtbare Technik-/Anbietersignale, 3 mit hoher Datenschutzrelevanz, 1 CMS-/Shop-Hinweis(e).", "metrics": { "technology_count": 17, "high_privacy_relevance_count": 3, "cms_or_shop_count": 1, "external_script_count": 7, "request_count": 53, "third_party_domain_count": 9, "infrastructure_finding_count": 1 }, "signals": { "server_header": "nginx", "generator": "", "x_powered_by": "", "asset_hosts": [ "app.usercentrics.eu", "d3e54v103j8qbb.cloudfront.net", "cdn.prod.website-files.com", "cdn.haufe.de", "www.haufe.de" ], "external_scripts": [ "https://app.usercentrics.eu/browser-ui/latest/loader.js", "https://d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=60ffbbe9932a40307266854d", "https://cdn.prod.website-files.com/60ffbbe9932a40307266854d/js/haufe-de-v4.schunk.36b8fb49256177c8.js", "https://cdn.prod.website-files.com/60ffbbe9932a40307266854d/js/haufe-de-v4.schunk.1e2e42278d4ac358.js", "https://cdn.prod.website-files.com/60ffbbe9932a40307266854d/js/haufe-de-v4.schunk.f919141e3448519b.js", "https://cdn.prod.website-files.com/60ffbbe9932a40307266854d/js/haufe-de-v4.611fc8e6.4ab36a70e4bbcf9a.js", "https://cdn.haufe.de/content/js/swiper/swiper-bundle.min.js" ], "tls_version": "TLSv1.2", "certificate_issuer": "Amazon RSA 2048 M04", "renderer": "playwright-chromium" }, "category_counts": { "Analytics/Werbung": 2, "tag_manager": 1, "Consent": 1, "other": 8, "CMS": 1, "Hosting/CDN": 1, "Server": 2, "Bibliothek": 1 }, "technologies": [ { "id": "google_tag_manager", "name": "Google Tag Manager", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "medium", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Signal: gtm.js" ], "source": "technology_analysis" }, { "id": "provider_google_tag_manager", "name": "Google Tag Manager", "category": "tag_manager", "category_label": "tag_manager", "confidence": "browser", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "googletagmanager.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "tracking_google_tag_manager", "name": "Google Tag Manager", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "google_tag_manager", "GTM-Integration" ], "source": "privacy_analysis" }, { "id": "usercentrics", "name": "Usercentrics", "category": "consent", "category_label": "Consent", "confidence": "medium", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "Signal: usercentrics" ], "source": "technology_analysis" }, { "id": "provider_consent-api.service.consent.usercentrics.eu", "name": "consent-api.service.consent.usercentrics.eu", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "consent-api.service.consent.usercentrics.eu", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "webflow", "name": "Webflow", "category": "cms", "category_label": "CMS", "confidence": "medium", "risk_score": 52, "privacy_relevance": "mittel", "evidence": [ "Signal: data-wf-page=\"" ], "source": "technology_analysis" }, { "id": "cloudflare", "name": "Cloudflare", "category": "hosting_cdn", "category_label": "Hosting/CDN", "confidence": "high", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Signal: cf-ray" ], "source": "technology_analysis" }, { "id": "provider_cdn.haufe.de", "name": "cdn.haufe.de", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "cdn.haufe.de", "3 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_cdn.prod.website-files.com", "name": "cdn.prod.website-files.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "cdn.prod.website-files.com", "28 Request(s)" ], "source": "browser_analysis" }, { "id": "nginx", "name": "nginx", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx" ], "source": "technology_analysis" }, { "id": "server_header", "name": "nginx", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx" ], "source": "technology_signals" }, { "id": "provider_api.usercentrics.eu", "name": "api.usercentrics.eu", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "api.usercentrics.eu", "6 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_app.usercentrics.eu", "name": "app.usercentrics.eu", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "app.usercentrics.eu", "4 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_d3e54v103j8qbb.cloudfront.net", "name": "d3e54v103j8qbb.cloudfront.net", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "d3e54v103j8qbb.cloudfront.net", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "jquery", "name": "jQuery", "category": "library", "category_label": "Bibliothek", "confidence": "high", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "Signal: jquery-", "Asset: https://d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=60ffbbe9932a40307266854" ], "source": "technology_analysis" }, { "id": "provider_uct.service.usercentrics.eu", "name": "uct.service.usercentrics.eu", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "uct.service.usercentrics.eu", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_wwi.haufe.de", "name": "wwi.haufe.de", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "wwi.haufe.de", "1 Request(s)" ], "source": "browser_analysis" } ], "operator_actions": [ { "id": "action_google_tag_manager", "technology": "Google Tag Manager", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/haufe.de" }, { "id": "action_provider_google_tag_manager", "technology": "Google Tag Manager", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/haufe.de" }, { "id": "action_tracking_google_tag_manager", "technology": "Google Tag Manager", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/haufe.de" }, { "id": "action_usercentrics", "technology": "Usercentrics", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_consent-api.service.consent.usercentrics.eu", "technology": "consent-api.service.consent.usercentrics.eu", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_webflow", "technology": "Webflow", "priority": "mittel", "owner": "Webbetrieb/IT", "action": "CMS, Themes, Plugins und sichtbare Versionshinweise aktualisieren, unnötige Plugins entfernen und Re-Scan nach Deployment ausführen.", "guide_url": "https://saferpage.de/guides/sichtbare-versionen-und-cves-beheben" }, { "id": "action_cloudflare", "technology": "Cloudflare", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/haufe.de" }, { "id": "action_provider_cdn.haufe.de", "technology": "cdn.haufe.de", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_cdn.prod.website-files.com", "technology": "cdn.prod.website-files.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_nginx", "technology": "nginx", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/haufe.de" } ], "cms_playbooks": [ { "id": "webflow", "platform": "Webflow", "summary": "Webflow Custom Code, Embeds, Fonts, Forms und Integrationen sollten gegen externe Vorabkontakte geprüft werden.", "steps": [ "Project Settings, Custom Code, Page Custom Code und Embed-Elemente auf Drittanbieter-Skripte prüfen.", "Fonts lokal beziehungsweise datensparsam einbinden und externe Embeds per Zwei-Klick oder Consent verzögern.", "Forms, reCAPTCHA, Analytics und Marketingpixel in Datenschutzerklärung und Consent-Oberfläche erklären.", "Nach Publish Cache/CDN berücksichtigen und SaferPage erneut scannen." ], "acceptance": [ "Custom-Code-Liste ist dokumentiert.", "Embeds laden nicht vor Einwilligung.", "Formular- und Anbieterhinweise sind verlinkt." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=haufe.de" } ], "infrastructure": { "risk_level": "low", "positive_signals": [ "Mehrere IP-Adressen gefunden: Hinweis auf redundante Infrastruktur oder CDN.", "Moderne TLS-Version aktiv: TLSv1.2.", "DMARC ist für die Domain vorhanden." ], "findings": [ { "id": "caa_missing", "title": "CAA-Record fehlt", "public": true, "category": "dns", "severity": "info", "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen." } ] }, "links": { "technology_center": "https://saferpage.de/technik/haufe.de", "json": "https://saferpage.de/technik/haufe.de/export", "csv": "https://saferpage.de/technik/haufe.de/export-csv", "markdown": "https://saferpage.de/technik/haufe.de/stack-md", "report": "https://saferpage.de/haufe.de", "vendors": "https://saferpage.de/anbieter/haufe.de", "consent": "https://saferpage.de/consent/haufe.de", "findings": "https://saferpage.de/befunde/haufe.de", "evidence": "https://saferpage.de/nachweise/haufe.de" }, "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet." }