{
    "schema": "https://saferpage.de/schemas/technology-detection.v1",
    "generated_at": "2026-07-01T09:19:53+00:00",
    "domain": "richtiggutesspielzeug.de",
    "available": true,
    "scan": {
        "id": "06139ddb-a095-497f-b418-cdd9f50de70a",
        "checked_at": "2026-06-28 18:06:06.985396+02"
    },
    "summary": "richtiggutesspielzeug.de: 35 sichtbare Technik-/Anbietersignale, 3 mit hoher Datenschutzrelevanz, 0 CMS-/Shop-Hinweis(e).",
    "metrics": {
        "technology_count": 35,
        "high_privacy_relevance_count": 3,
        "cms_or_shop_count": 0,
        "external_script_count": 2,
        "request_count": 330,
        "third_party_domain_count": 36,
        "infrastructure_finding_count": 2
    },
    "signals": {
        "server_header": "nginx + Phusion Passenger(R)",
        "generator": "",
        "x_powered_by": "Phusion Passenger(R)",
        "asset_hosts": [
            "d8infh5iwjez6.cloudfront.net",
            "www.google.com",
            "www.cloudimage.io",
            "js.stripe.com",
            "www.richtiggutesspielzeug.de"
        ],
        "external_scripts": [
            "https://d8infh5iwjez6.cloudfront.net/vite/entrypoints/bundle.js-BBJsME58.js",
            "https://www.google.com/recaptcha/api.js?onload=recaptchaV3Loaded&amp;render=6LcrG-gUAAAAAMZMn5SMCvGBATIwvJr0kg--_94H"
        ],
        "tls_version": "TLSv1.2",
        "certificate_issuer": "YR1",
        "renderer": "playwright-chromium"
    },
    "category_counts": {
        "Analytics/Werbung": 1,
        "Werbung": 1,
        "tag_manager": 1,
        "Schriften": 1,
        "cdn": 1,
        "other": 26,
        "Server": 2,
        "Backend": 1,
        "payment": 1
    },
    "technologies": [
        {
            "id": "provider_google_analytics",
            "name": "Google Analytics",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "region1.google-analytics.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google_doubleclick",
            "name": "Google DoubleClick",
            "category": "advertising",
            "category_label": "Werbung",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "cm.g.doubleclick.net",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google_tag_manager",
            "name": "Google Tag Manager",
            "category": "tag_manager",
            "category_label": "tag_manager",
            "confidence": "browser",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "googletagmanager.com",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google_fonts",
            "name": "Google Fonts",
            "category": "fonts",
            "category_label": "Schriften",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "fonts.gstatic.com",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google_static",
            "name": "Google Static",
            "category": "cdn",
            "category_label": "cdn",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "gstatic.com",
                "5 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_adservice.google.com",
            "name": "adservice.google.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "adservice.google.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_google.com",
            "name": "google.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "google.com",
                "5 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "nginx",
            "name": "nginx",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: nginx + Phusion Passenger(R)"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "server_header",
            "name": "nginx + Phusion Passenger(R)",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: nginx + Phusion Passenger(R)"
            ],
            "source": "technology_signals"
        },
        {
            "id": "provider_rtb-csync.smartadserver.com",
            "name": "rtb-csync.smartadserver.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "rtb-csync.smartadserver.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "phusion_passenger_r",
            "name": "Phusion Passenger(R)",
            "category": "backend",
            "category_label": "Backend",
            "confidence": "high",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "X-Powered-By: Phusion Passenger(R)"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_stripe",
            "name": "Stripe",
            "category": "payment",
            "category_label": "payment",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "m.stripe.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_a.twiago.com",
            "name": "a.twiago.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "a.twiago.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ad.ad-srv.net",
            "name": "ad.ad-srv.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "ad.ad-srv.net",
                "6 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ad11.adfarm1.adition.com",
            "name": "ad11.adfarm1.adition.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "ad11.adfarm1.adition.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ad13.adfarm1.adition.com",
            "name": "ad13.adfarm1.adition.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "ad13.adfarm1.adition.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ad4m.at",
            "name": "ad4m.at",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "ad4m.at",
                "3 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ahozat6rn.cloudimg.io",
            "name": "ahozat6rn.cloudimg.io",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "ahozat6rn.cloudimg.io",
                "170 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_as.ad4m.at",
            "name": "as.ad4m.at",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "as.ad4m.at",
                "4 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_c.tt-srv.com",
            "name": "c.tt-srv.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "c.tt-srv.com",
                "5 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_d8infh5iwjez6.cloudfront.net",
            "name": "d8infh5iwjez6.cloudfront.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "d8infh5iwjez6.cloudfront.net",
                "70 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_dsum-sec.casalemedia.com",
            "name": "dsum-sec.casalemedia.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "dsum-sec.casalemedia.com",
                "3 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ih.adscale.de",
            "name": "ih.adscale.de",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "ih.adscale.de",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_imagesrv.adition.com",
            "name": "imagesrv.adition.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "imagesrv.adition.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_m.stripe.network",
            "name": "m.stripe.network",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "m.stripe.network",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_pix.hyj.mobi",
            "name": "pix.hyj.mobi",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "pix.hyj.mobi",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_public-cb503b87e8734b4c.s3.eu-central-1.amazonaws.com",
            "name": "public-cb503b87e8734b4c.s3.eu-central-1.amazonaws.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "public-cb503b87e8734b4c.s3.eu-central-1.amazonaws.com",
                "5 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_r.df-srv.de",
            "name": "r.df-srv.de",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "r.df-srv.de",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_secure.adnxs.com",
            "name": "secure.adnxs.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "secure.adnxs.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_simage2.pubmatic.com",
            "name": "simage2.pubmatic.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "simage2.pubmatic.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_t.adcell.com",
            "name": "t.adcell.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "t.adcell.com",
                "4 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_t.tt-srv.com",
            "name": "t.tt-srv.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "t.tt-srv.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_tm.ad-srv.net",
            "name": "tm.ad-srv.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "tm.ad-srv.net",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_tm702.ad-srv.net",
            "name": "tm702.ad-srv.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "tm702.ad-srv.net",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_x.bidswitch.net",
            "name": "x.bidswitch.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "x.bidswitch.net",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        }
    ],
    "operator_actions": [
        {
            "id": "action_provider_google_analytics",
            "technology": "Google Analytics",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/richtiggutesspielzeug.de"
        },
        {
            "id": "action_provider_google_doubleclick",
            "technology": "Google DoubleClick",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/richtiggutesspielzeug.de"
        },
        {
            "id": "action_provider_google_tag_manager",
            "technology": "Google Tag Manager",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/richtiggutesspielzeug.de"
        },
        {
            "id": "action_provider_google_fonts",
            "technology": "Google Fonts",
            "priority": "mittel",
            "owner": "Webentwicklung/Datenschutz",
            "action": "Remote-Schriften lokal hosten oder Zweck, Anbieter, Transfer und Consent-/Rechtsgrundlage transparent dokumentieren.",
            "guide_url": "https://saferpage.de/guides/google-dienste-datenschutzfreundlich-einbinden"
        },
        {
            "id": "action_provider_google_static",
            "technology": "Google Static",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_adservice.google.com",
            "technology": "adservice.google.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_google.com",
            "technology": "google.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_nginx",
            "technology": "nginx",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/richtiggutesspielzeug.de"
        },
        {
            "id": "action_server_header",
            "technology": "nginx + Phusion Passenger(R)",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/richtiggutesspielzeug.de"
        },
        {
            "id": "action_provider_rtb-csync.smartadserver.com",
            "technology": "rtb-csync.smartadserver.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        }
    ],
    "cms_playbooks": [
        {
            "id": "generic",
            "platform": "Allgemeines Website-Deployment",
            "summary": "Im passiven Check wurde kein eindeutiges CMS erkannt. Trotzdem sollten Betreiber Release, Consent, Drittanbieter, Security-Header und Nachweise wie bei einem CMS-Update behandeln.",
            "steps": [
                "Deployment-Quelle, Hosting/CDN, externe Skripte, Consent-Tool und wichtige Templates inventarisieren.",
                "Alle nicht notwendigen Drittanbieter vor Einwilligung blockieren und Anbieterzwecke dokumentieren.",
                "Security-Header, HTTPS/HSTS, Referrer-Policy, CSP und Cookie-Attribute prüfen.",
                "Nach Änderungen Re-Scan, Screenshot, JSON/CSV und Fix-Guides ablegen."
            ],
            "acceptance": [
                "Release-Änderung ist nachvollziehbar.",
                "Drittanbieter-/Cookie-Abgleich ist aktualisiert.",
                "Re-Scan und Nachweise sind verlinkt."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=richtiggutesspielzeug.de"
        }
    ],
    "infrastructure": {
        "risk_level": "low",
        "positive_signals": [
            "Mehrere IP-Adressen gefunden: Hinweis auf redundante Infrastruktur oder CDN.",
            "Moderne TLS-Version aktiv: TLSv1.2."
        ],
        "findings": [
            {
                "id": "dmarc_missing",
                "title": "DMARC fehlt",
                "public": true,
                "category": "email",
                "severity": "info",
                "recommendation": "DMARC setzen, damit E-Mail-Spoofing der Domain besser eingeschränkt wird."
            },
            {
                "id": "caa_missing",
                "title": "CAA-Record fehlt",
                "public": true,
                "category": "dns",
                "severity": "info",
                "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen."
            }
        ]
    },
    "links": {
        "technology_center": "https://saferpage.de/technik/richtiggutesspielzeug.de",
        "json": "https://saferpage.de/technik/richtiggutesspielzeug.de/export",
        "csv": "https://saferpage.de/technik/richtiggutesspielzeug.de/export-csv",
        "markdown": "https://saferpage.de/technik/richtiggutesspielzeug.de/stack-md",
        "report": "https://saferpage.de/richtiggutesspielzeug.de",
        "vendors": "https://saferpage.de/anbieter/richtiggutesspielzeug.de",
        "consent": "https://saferpage.de/consent/richtiggutesspielzeug.de",
        "findings": "https://saferpage.de/befunde/richtiggutesspielzeug.de",
        "evidence": "https://saferpage.de/nachweise/richtiggutesspielzeug.de"
    },
    "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet."
}
