{
    "schema": "https://saferpage.de/schemas/technology-detection.v1",
    "generated_at": "2026-07-01T22:46:48+00:00",
    "domain": "onlineapo.at",
    "available": true,
    "scan": {
        "id": "7f8c05ad-7917-4d63-a7f5-df458198830a",
        "checked_at": "2026-07-01 21:24:40.400332+02"
    },
    "summary": "onlineapo.at: 20 sichtbare Technik-/Anbietersignale, 6 mit hoher Datenschutzrelevanz, 1 CMS-/Shop-Hinweis(e).",
    "metrics": {
        "technology_count": 20,
        "high_privacy_relevance_count": 6,
        "cms_or_shop_count": 1,
        "external_script_count": 3,
        "request_count": 122,
        "third_party_domain_count": 11,
        "infrastructure_finding_count": 1
    },
    "signals": {
        "server_header": "Apache",
        "generator": "",
        "x_powered_by": "",
        "asset_hosts": [
            "widget.moin.ai",
            "wgs.onlineapo.at",
            "integrations.etrusted.com",
            "www.onlineapo.at",
            "connect.facebook.net",
            "www.google-analytics.com",
            "imgproxy.onlineapo.at"
        ],
        "external_scripts": [
            "https://widget.moin.ai/moin-loader.js?id=wM7tVHH9&channelid=wM7tVHH9",
            "https://wgs.onlineapo.at/static/scripts/dist/swsix.bundle.js?app_proxy=false&enable_sps=true&gds_px=AW-792383823&is_gtm=true&wgs_config_id=18&shop=www.onlineapo.at_9d1393ee97804b3696bc7031a1e55503&shop_system=shopware6&external_page=true",
            "https://integrations.etrusted.com/applications/widget.js/v2"
        ],
        "tls_version": "TLSv1.3",
        "certificate_issuer": "RapidSSL TLS RSA CA G1",
        "renderer": "playwright-chromium"
    },
    "category_counts": {
        "Analytics/Werbung": 6,
        "Shop": 1,
        "other": 11,
        "Server": 2
    },
    "technologies": [
        {
            "id": "tracking_google_ads_conversion",
            "name": "Google Ads Conversion",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "google_ads_conversion",
                "AW-792383823"
            ],
            "source": "privacy_analysis"
        },
        {
            "id": "google_analytics",
            "name": "Google Analytics",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: google-analytics.com",
                "Script-Domain: google-analytics.com"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "tracking_google_analytics_4",
            "name": "Google Analytics 4",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "google_analytics_4",
                "G-9RY33CV4JT"
            ],
            "source": "privacy_analysis"
        },
        {
            "id": "google_tag_manager",
            "name": "Google Tag Manager",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: googletagmanager.com",
                "Script-Domain: googletagmanager.com"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "meta_facebook_pixel",
            "name": "Meta/Facebook Pixel",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Script-Domain: connect.facebook.net"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "microsoft_clarity",
            "name": "Microsoft Clarity",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: clarity.ms/tag",
                "Script-Domain: clarity.ms"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "shopware",
            "name": "Shopware",
            "category": "ecommerce",
            "category_label": "Shop",
            "confidence": "medium",
            "risk_score": 52,
            "privacy_relevance": "mittel",
            "evidence": [
                "Signal: shopware"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_customer-data-api.trstd-login.trustedshops.com",
            "name": "customer-data-api.trstd-login.trustedshops.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 52,
            "privacy_relevance": "mittel",
            "evidence": [
                "customer-data-api.trstd-login.trustedshops.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_widgets.trustedshops.com",
            "name": "widgets.trustedshops.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 52,
            "privacy_relevance": "mittel",
            "evidence": [
                "widgets.trustedshops.com",
                "6 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "apache",
            "name": "Apache",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: Apache"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "server_header",
            "name": "Apache",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: Apache"
            ],
            "source": "technology_signals"
        },
        {
            "id": "provider_cdn.doofinder.com",
            "name": "cdn.doofinder.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "cdn.doofinder.com",
                "8 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_cfg.moin.ai",
            "name": "cfg.moin.ai",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "cfg.moin.ai",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_eu1-api.doofinder.com",
            "name": "eu1-api.doofinder.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "eu1-api.doofinder.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_eu1-config.doofinder.com",
            "name": "eu1-config.doofinder.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "eu1-config.doofinder.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_imgproxy.onlineapo.at",
            "name": "imgproxy.onlineapo.at",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "imgproxy.onlineapo.at",
                "24 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_integrations.etrusted.com",
            "name": "integrations.etrusted.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "integrations.etrusted.com",
                "12 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_logova.basg.gv.at",
            "name": "logova.basg.gv.at",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "logova.basg.gv.at",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_wgs.onlineapo.at",
            "name": "wgs.onlineapo.at",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "wgs.onlineapo.at",
                "3 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_widget.moin.ai",
            "name": "widget.moin.ai",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "widget.moin.ai",
                "7 Request(s)"
            ],
            "source": "browser_analysis"
        }
    ],
    "operator_actions": [
        {
            "id": "action_tracking_google_ads_conversion",
            "technology": "Google Ads Conversion",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onlineapo.at"
        },
        {
            "id": "action_google_analytics",
            "technology": "Google Analytics",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onlineapo.at"
        },
        {
            "id": "action_tracking_google_analytics_4",
            "technology": "Google Analytics 4",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onlineapo.at"
        },
        {
            "id": "action_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onlineapo.at"
        },
        {
            "id": "action_meta_facebook_pixel",
            "technology": "Meta/Facebook Pixel",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onlineapo.at"
        },
        {
            "id": "action_microsoft_clarity",
            "technology": "Microsoft Clarity",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onlineapo.at"
        },
        {
            "id": "action_shopware",
            "technology": "Shopware",
            "priority": "mittel",
            "owner": "Webbetrieb/IT",
            "action": "CMS, Themes, Plugins und sichtbare Versionshinweise aktualisieren, unnötige Plugins entfernen und Re-Scan nach Deployment ausführen.",
            "guide_url": "https://saferpage.de/guides/sichtbare-versionen-und-cves-beheben"
        },
        {
            "id": "action_provider_customer-data-api.trstd-login.trustedshops.com",
            "technology": "customer-data-api.trstd-login.trustedshops.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_widgets.trustedshops.com",
            "technology": "widgets.trustedshops.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_apache",
            "technology": "Apache",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/onlineapo.at"
        }
    ],
    "cms_playbooks": [
        {
            "id": "generic_cms",
            "platform": "CMS / Website-Deployment",
            "summary": "SaferPage erkennt ein CMS-/Website-Signal, aber keine sichere Plattform. Betreiber sollten Patchstand, Erweiterungen, Templates, Consent und externe Dienste manuell abgleichen.",
            "steps": [
                "CMS, Theme, Plugins/Extensions, Page Builder, Tag Manager und Hosting/CDN inventarisieren.",
                "Nicht notwendige Skripte, Cookies, Fonts, Maps, Videos und Pixel vor Consent blockieren.",
                "Datenschutzerklärung, Anbieterregister, Cookie-Liste und Impressum gegen die reale Browser-Evidence abgleichen.",
                "Nach jeder Änderung Re-Scan ausführen und Exportpaket als Nachweis sichern."
            ],
            "acceptance": [
                "Plattform und Erweiterungen sind dokumentiert.",
                "Consent- und Anbieterbefunde sind geschlossen oder begründet.",
                "Re-Scan zeigt keine neuen kritischen Signale."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=onlineapo.at"
        }
    ],
    "infrastructure": {
        "risk_level": "low",
        "positive_signals": [
            "Mehrere IP-Adressen gefunden: Hinweis auf redundante Infrastruktur oder CDN.",
            "Moderne TLS-Version aktiv: TLSv1.3.",
            "HSTS ist aktiv.",
            "DMARC ist für die Domain vorhanden."
        ],
        "findings": [
            {
                "id": "caa_missing",
                "title": "CAA-Record fehlt",
                "public": true,
                "category": "dns",
                "severity": "info",
                "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen."
            }
        ]
    },
    "links": {
        "technology_center": "https://saferpage.de/technik/onlineapo.at",
        "json": "https://saferpage.de/technik/onlineapo.at/export",
        "csv": "https://saferpage.de/technik/onlineapo.at/export-csv",
        "markdown": "https://saferpage.de/technik/onlineapo.at/stack-md",
        "report": "https://saferpage.de/onlineapo.at",
        "vendors": "https://saferpage.de/anbieter/onlineapo.at",
        "consent": "https://saferpage.de/consent/onlineapo.at",
        "findings": "https://saferpage.de/befunde/onlineapo.at",
        "evidence": "https://saferpage.de/nachweise/onlineapo.at"
    },
    "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet."
}
