{ "schema": "https://saferpage.de/schemas/technology-detection.v1", "generated_at": "2026-06-30T01:36:45+00:00", "domain": "krone.at", "available": true, "scan": { "id": "3e8800b4-7cbe-4a08-ace8-99c2b68156d1", "checked_at": "2026-06-30 00:54:08.76583+02" }, "summary": "krone.at: 20 sichtbare Technik-/Anbietersignale, 5 mit hoher Datenschutzrelevanz, 0 CMS-/Shop-Hinweis(e).", "metrics": { "technology_count": 20, "high_privacy_relevance_count": 5, "cms_or_shop_count": 0, "external_script_count": 2, "request_count": 255, "third_party_domain_count": 14, "infrastructure_finding_count": 1 }, "signals": { "server_header": "", "generator": "", "x_powered_by": "", "asset_hosts": [ "sdk.privacy-center.org", "api.krone.at", "www.krone.at", "imgl.krone.at", "fonts.krone.at", "connect.facebook.net", "script-at.iocnt.net", "at.iocnt.net", "www.google-analytics.com", "www.googletagmanager.com", "c.amazon-adsystem.com", "data-1ce9bdc9f1.krone.at" ], "external_scripts": [ "https://sdk.privacy-center.org/be967a1c-5719-48ab-acfd-c5b99ced4bb7/loader.js?target=www.krone.at", "https://api.krone.at/v1/weather/adserver.js?1.0.34455&2026-06-30" ], "tls_version": "TLSv1.3", "certificate_issuer": "Amazon RSA 2048 M01", "renderer": "playwright-chromium" }, "category_counts": { "Analytics/Werbung": 5, "other": 14, "Hosting/CDN": 1 }, "technologies": [ { "id": "google_analytics", "name": "Google Analytics", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Signal: google-analytics.com", "Script-Domain: google-analytics.com" ], "source": "technology_analysis" }, { "id": "google_tag_manager", "name": "Google Tag Manager", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Signal: googletagmanager.com", "Script-Domain: googletagmanager.com" ], "source": "technology_analysis" }, { "id": "tracking_google_tag_manager", "name": "Google Tag Manager", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "google_tag_manager", "gtm-script" ], "source": "privacy_analysis" }, { "id": "meta_facebook_pixel", "name": "Meta/Facebook Pixel", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "Script-Domain: connect.facebook.net" ], "source": "technology_analysis" }, { "id": "tracking_universal_analytics", "name": "Universal Analytics", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "high", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "google_universal_analytics", "UA-2261066-1" ], "source": "privacy_analysis" }, { "id": "provider_fonts.krone.at", "name": "fonts.krone.at", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "fonts.krone.at", "11 Request(s)" ], "source": "browser_analysis" }, { "id": "cloudflare", "name": "Cloudflare", "category": "hosting_cdn", "category_label": "Hosting/CDN", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Signal: cloudflare" ], "source": "technology_analysis" }, { "id": "provider_api.cxense.com", "name": "api.cxense.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "api.cxense.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_api.krone.at", "name": "api.krone.at", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "api.krone.at", "6 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_api.willi.krone.at", "name": "api.willi.krone.at", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "api.willi.krone.at", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_c2.taboola.com", "name": "c2.taboola.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "c2.taboola.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_captcha.eu", "name": "captcha.eu", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "captcha.eu", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_data-1ce9bdc9f1.krone.at", "name": "data-1ce9bdc9f1.krone.at", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "data-1ce9bdc9f1.krone.at", "5 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_img.sportradar.com", "name": "img.sportradar.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "img.sportradar.com", "36 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_imgl.krone.at", "name": "imgl.krone.at", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "imgl.krone.at", "92 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_mediaviod-bitmovin.krone.at", "name": "mediaviod-bitmovin.krone.at", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "mediaviod-bitmovin.krone.at", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_nr-events.taboola.com", "name": "nr-events.taboola.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "nr-events.taboola.com", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_script-at.iocnt.net", "name": "script-at.iocnt.net", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "script-at.iocnt.net", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_sdk.privacy-center.org", "name": "sdk.privacy-center.org", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "sdk.privacy-center.org", "3 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_trinity.krone.at", "name": "trinity.krone.at", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "trinity.krone.at", "5 Request(s)" ], "source": "browser_analysis" } ], "operator_actions": [ { "id": "action_google_analytics", "technology": "Google Analytics", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/krone.at" }, { "id": "action_google_tag_manager", "technology": "Google Tag Manager", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/krone.at" }, { "id": "action_tracking_google_tag_manager", "technology": "Google Tag Manager", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/krone.at" }, { "id": "action_meta_facebook_pixel", "technology": "Meta/Facebook Pixel", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/krone.at" }, { "id": "action_tracking_universal_analytics", "technology": "Universal Analytics", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/krone.at" }, { "id": "action_provider_fonts.krone.at", "technology": "fonts.krone.at", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_cloudflare", "technology": "Cloudflare", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/krone.at" }, { "id": "action_provider_api.cxense.com", "technology": "api.cxense.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_api.krone.at", "technology": "api.krone.at", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_api.willi.krone.at", "technology": "api.willi.krone.at", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" } ], "cms_playbooks": [ { "id": "generic", "platform": "Allgemeines Website-Deployment", "summary": "Im passiven Check wurde kein eindeutiges CMS erkannt. Trotzdem sollten Betreiber Release, Consent, Drittanbieter, Security-Header und Nachweise wie bei einem CMS-Update behandeln.", "steps": [ "Deployment-Quelle, Hosting/CDN, externe Skripte, Consent-Tool und wichtige Templates inventarisieren.", "Alle nicht notwendigen Drittanbieter vor Einwilligung blockieren und Anbieterzwecke dokumentieren.", "Security-Header, HTTPS/HSTS, Referrer-Policy, CSP und Cookie-Attribute prüfen.", "Nach Änderungen Re-Scan, Screenshot, JSON/CSV und Fix-Guides ablegen." ], "acceptance": [ "Release-Änderung ist nachvollziehbar.", "Drittanbieter-/Cookie-Abgleich ist aktualisiert.", "Re-Scan und Nachweise sind verlinkt." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=krone.at" } ], "infrastructure": { "risk_level": "low", "positive_signals": [ "Mehrere IP-Adressen gefunden: Hinweis auf redundante Infrastruktur oder CDN.", "Moderne TLS-Version aktiv: TLSv1.3.", "HSTS ist aktiv.", "DMARC ist für die Domain vorhanden." ], "findings": [ { "id": "caa_missing", "title": "CAA-Record fehlt", "public": true, "category": "dns", "severity": "info", "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen." } ] }, "links": { "technology_center": "https://saferpage.de/technik/krone.at", "json": "https://saferpage.de/technik/krone.at/export", "csv": "https://saferpage.de/technik/krone.at/export-csv", "markdown": "https://saferpage.de/technik/krone.at/stack-md", "report": "https://saferpage.de/krone.at", "vendors": "https://saferpage.de/anbieter/krone.at", "consent": "https://saferpage.de/consent/krone.at", "findings": "https://saferpage.de/befunde/krone.at", "evidence": "https://saferpage.de/nachweise/krone.at" }, "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet." }