{
    "schema": "https://saferpage.de/schemas/technology-detection.v1",
    "generated_at": "2026-07-02T06:59:39+00:00",
    "domain": "onventis.de",
    "available": true,
    "scan": {
        "id": "821812e7-1510-4872-948a-9e1a5318253b",
        "checked_at": "2026-07-02 03:32:48.419907+02"
    },
    "summary": "onventis.de: 25 sichtbare Technik-/Anbietersignale, 10 mit hoher Datenschutzrelevanz, 2 CMS-/Shop-Hinweis(e).",
    "metrics": {
        "technology_count": 25,
        "high_privacy_relevance_count": 10,
        "cms_or_shop_count": 2,
        "external_script_count": 0,
        "request_count": 169,
        "third_party_domain_count": 17,
        "infrastructure_finding_count": 1
    },
    "signals": {
        "server_header": "nginx",
        "generator": "WordPress 6.9.4",
        "x_powered_by": "",
        "asset_hosts": [
            "www.onventis.de",
            "gmpg.org",
            "www.onventis.com",
            "www.onventis.nl",
            "www.onventis.se",
            "www.onventis.fr",
            "www.google-analytics.com",
            "www.googletagservices.com",
            "onventis.jobs.personio.de",
            "we-are-hiring.cdn.personio.de",
            "mktdplp102cdn.azureedge.net",
            "video.onventis.com"
        ],
        "external_scripts": [],
        "tls_version": "TLSv1.3",
        "certificate_issuer": "R13",
        "renderer": "playwright-chromium"
    },
    "category_counts": {
        "Analytics/Werbung": 8,
        "Werbung": 1,
        "tag_manager": 1,
        "CMS": 2,
        "other": 8,
        "Server": 2,
        "social_tracking": 1,
        "session_replay": 1,
        "Bibliothek": 1
    },
    "technologies": [
        {
            "id": "google_ad_manager",
            "name": "Google Ad Manager",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Script-Domain: googletagservices.com"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_google_adsense",
            "name": "Google AdSense",
            "category": "advertising",
            "category_label": "Werbung",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "pagead2.googlesyndication.com",
                "3 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "tracking_google_ads_conversion",
            "name": "Google Ads Conversion",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "google_ads_conversion",
                "AW-1006824746"
            ],
            "source": "privacy_analysis"
        },
        {
            "id": "google_analytics",
            "name": "Google Analytics",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: google-analytics.com",
                "Script-Domain: google-analytics.com"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_google_analytics",
            "name": "Google Analytics",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "region1.google-analytics.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "tracking_google_analytics_4",
            "name": "Google Analytics 4",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "google_analytics_4",
                "g-ytsubscribe"
            ],
            "source": "privacy_analysis"
        },
        {
            "id": "google_doubleclick",
            "name": "Google DoubleClick",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Script-Domain: doubleclick.net"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "google_tag_manager",
            "name": "Google Tag Manager",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "medium",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: gtm-"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_google_tag_manager",
            "name": "Google Tag Manager",
            "category": "tag_manager",
            "category_label": "tag_manager",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "googletagmanager.com",
                "3 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "tracking_google_tag_manager",
            "name": "Google Tag Manager",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "google_tag_manager",
                "GTM-525PMM9B"
            ],
            "source": "privacy_analysis"
        },
        {
            "id": "joomla",
            "name": "Joomla",
            "category": "cms",
            "category_label": "CMS",
            "confidence": "medium",
            "risk_score": 52,
            "privacy_relevance": "mittel",
            "evidence": [
                "Signal: /templates/"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "wordpress",
            "name": "WordPress",
            "category": "cms",
            "category_label": "CMS",
            "confidence": "high",
            "risk_score": 52,
            "privacy_relevance": "mittel",
            "evidence": [
                "Meta generator: WordPress 6.9.4",
                "Signal: wp-content/"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_cxppusa1formui01cdnsa01-endpoint.azureedge.net",
            "name": "cxppusa1formui01cdnsa01-endpoint.azureedge.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "cxppusa1formui01cdnsa01-endpoint.azureedge.net",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "nginx",
            "name": "nginx",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: nginx"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "server_header",
            "name": "nginx",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: nginx"
            ],
            "source": "technology_signals"
        },
        {
            "id": "provider_linkedin",
            "name": "LinkedIn",
            "category": "social_tracking",
            "category_label": "social_tracking",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "px4.ads.linkedin.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_microsoft_clarity",
            "name": "Microsoft Clarity",
            "category": "session_replay",
            "category_label": "session_replay",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "scripts.clarity.ms",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_acuteintuitive52.com",
            "name": "acuteintuitive52.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "acuteintuitive52.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_assets-eur.mkt.dynamics.com",
            "name": "assets-eur.mkt.dynamics.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "assets-eur.mkt.dynamics.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "jquery",
            "name": "jQuery",
            "category": "library",
            "category_label": "Bibliothek",
            "confidence": "medium",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Signal: jquery.min.js"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_onventis.com",
            "name": "onventis.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "onventis.com",
                "4 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_onventis.nl",
            "name": "onventis.nl",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "onventis.nl",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_public-eur.mkt.dynamics.com",
            "name": "public-eur.mkt.dynamics.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "public-eur.mkt.dynamics.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_s.w.org",
            "name": "s.w.org",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "s.w.org",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_serve.albacross.com",
            "name": "serve.albacross.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "serve.albacross.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        }
    ],
    "operator_actions": [
        {
            "id": "action_google_ad_manager",
            "technology": "Google Ad Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_provider_google_adsense",
            "technology": "Google AdSense",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_tracking_google_ads_conversion",
            "technology": "Google Ads Conversion",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_google_analytics",
            "technology": "Google Analytics",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_provider_google_analytics",
            "technology": "Google Analytics",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_tracking_google_analytics_4",
            "technology": "Google Analytics 4",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_google_doubleclick",
            "technology": "Google DoubleClick",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_provider_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        },
        {
            "id": "action_tracking_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/onventis.de"
        }
    ],
    "cms_playbooks": [
        {
            "id": "joomla",
            "platform": "Joomla",
            "summary": "Joomla-Templates, Erweiterungen und Cookie-Plugins sollten nach jedem Update gegen echte Browserkontakte geprüft werden.",
            "steps": [
                "Joomla Core, Templates und Erweiterungen aktualisieren; veraltete Erweiterungen entfernen.",
                "Template-Overrides und Module nach externen Skripten, Fonts, Maps, Videos, Captchas und Pixeln prüfen.",
                "Cookie-/Consent-Erweiterung so konfigurieren, dass nicht notwendige Dienste erst nach Einwilligung laden.",
                "Security-Header und HTTPS-Weiterleitungen im Hosting/Webserver setzen und Re-Scan ausführen."
            ],
            "acceptance": [
                "Template-/Extension-Änderungen dokumentiert.",
                "Consent-Test zeigt keine vorzeitigen Trackingkontakte.",
                "Fix-Guides sind abgearbeitet."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=onventis.de"
        },
        {
            "id": "wordpress",
            "platform": "WordPress",
            "summary": "Plugins, Theme, Core, Tag Manager, Consent-Plugin und Caching gemeinsam prüfen; WordPress-Updates ändern oft Cookies, Skripte und externe Requests.",
            "steps": [
                "WordPress Core, aktive Themes und alle Plugins in Staging aktualisieren; nicht genutzte Plugins entfernen.",
                "Consent-/Cookie-Plugin gegen den SaferPage-Consent-Test prüfen: Erstaufruf, Ablehnen, Akzeptieren und GPC separat testen.",
                "Google Fonts, Maps, YouTube, reCAPTCHA, Analytics und Pixel in Theme, Page Builder und Tag Manager suchen und vor Consent blockieren.",
                "Security-Header, HSTS, Referrer-Policy und CSP im Hosting, Nginx/Apache oder Security-Plugin setzen und nach Cache-Purge erneut prüfen."
            ],
            "acceptance": [
                "Keine neuen Trackingkontakte vor Consent.",
                "Plugin-/Theme-Versionen sind dokumentiert.",
                "Kurzreport, Technik-Center und Fix-Guides nach Re-Scan aktualisiert."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=onventis.de"
        }
    ],
    "infrastructure": {
        "risk_level": "low",
        "positive_signals": [
            "Moderne TLS-Version aktiv: TLSv1.3.",
            "HSTS ist aktiv.",
            "DMARC ist für die Domain vorhanden."
        ],
        "findings": [
            {
                "id": "caa_missing",
                "title": "CAA-Record fehlt",
                "public": true,
                "category": "dns",
                "severity": "info",
                "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen."
            }
        ]
    },
    "links": {
        "technology_center": "https://saferpage.de/technik/onventis.de",
        "json": "https://saferpage.de/technik/onventis.de/export",
        "csv": "https://saferpage.de/technik/onventis.de/export-csv",
        "markdown": "https://saferpage.de/technik/onventis.de/stack-md",
        "report": "https://saferpage.de/onventis.de",
        "vendors": "https://saferpage.de/anbieter/onventis.de",
        "consent": "https://saferpage.de/consent/onventis.de",
        "findings": "https://saferpage.de/befunde/onventis.de",
        "evidence": "https://saferpage.de/nachweise/onventis.de"
    },
    "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet."
}
