{
    "schema": "https://saferpage.de/schemas/technology-detection.v1",
    "generated_at": "2026-07-03T21:01:48+00:00",
    "domain": "sammlungszentrum.ch",
    "available": true,
    "scan": {
        "id": "b62014dc-f0a2-4cbb-bbe1-dbe7953e707e",
        "checked_at": "2026-07-03 14:52:45.932245+02"
    },
    "summary": "sammlungszentrum.ch: 24 sichtbare Technik-/Anbietersignale, 1 mit hoher Datenschutzrelevanz, 0 CMS-/Shop-Hinweis(e).",
    "metrics": {
        "technology_count": 24,
        "high_privacy_relevance_count": 1,
        "cms_or_shop_count": 0,
        "external_script_count": 1,
        "request_count": 115,
        "third_party_domain_count": 21,
        "infrastructure_finding_count": 1
    },
    "signals": {
        "server_header": "Apache",
        "generator": "",
        "x_powered_by": "",
        "asset_hosts": [
            "consent.cookiefirst.com",
            "www.sammlungszentrum.ch"
        ],
        "external_scripts": [
            "https://consent.cookiefirst.com/banner.js"
        ],
        "tls_version": "TLSv1.3",
        "certificate_issuer": "YE1",
        "renderer": "playwright-chromium"
    },
    "category_counts": {
        "Analytics/Werbung": 1,
        "Schriften": 1,
        "other": 18,
        "Server": 2,
        "cdn": 1,
        "Backend": 1
    },
    "technologies": [
        {
            "id": "matomo",
            "name": "Matomo",
            "category": "analytics",
            "category_label": "Analytics/Werbung",
            "confidence": "high",
            "risk_score": 80,
            "privacy_relevance": "hoch",
            "evidence": [
                "Signal: matomo.js",
                "Script-Domain: matomo"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_google_fonts",
            "name": "Google Fonts",
            "category": "fonts",
            "category_label": "Schriften",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "fonts.googleapis.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_consent.cookiefirst.com",
            "name": "consent.cookiefirst.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 58,
            "privacy_relevance": "mittel",
            "evidence": [
                "consent.cookiefirst.com",
                "10 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "apache",
            "name": "Apache",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: Apache"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "server_header",
            "name": "Apache",
            "category": "server",
            "category_label": "Server",
            "confidence": "medium",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "Server-Header: Apache"
            ],
            "source": "technology_signals"
        },
        {
            "id": "provider_cloudflare",
            "name": "Cloudflare",
            "category": "cdn",
            "category_label": "cdn",
            "confidence": "browser",
            "risk_score": 42,
            "privacy_relevance": "niedrig",
            "evidence": [
                "cdnjs.cloudflare.com",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "php",
            "name": "PHP",
            "category": "backend",
            "category_label": "Backend",
            "confidence": "medium",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "PHP-Signal in Header oder Cookie"
            ],
            "source": "technology_analysis"
        },
        {
            "id": "provider_api.cookiefirst.com",
            "name": "api.cookiefirst.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "api.cookiefirst.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_api3.geo.admin.ch",
            "name": "api3.geo.admin.ch",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "api3.geo.admin.ch",
                "5 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_c.go-mpulse.net",
            "name": "c.go-mpulse.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "c.go-mpulse.net",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_colibri-js.akamaized.net",
            "name": "colibri-js.akamaized.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "colibri-js.akamaized.net",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_data.srf.ch",
            "name": "data.srf.ch",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "data.srf.ch",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_edge.cookiefirst.com",
            "name": "edge.cookiefirst.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "edge.cookiefirst.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_il.srgssr.ch",
            "name": "il.srgssr.ch",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "il.srgssr.ch",
                "8 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_monitoring.pillarbox.ch",
            "name": "monitoring.pillarbox.ch",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "monitoring.pillarbox.ch",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_moto.nationalmuseum.ch",
            "name": "moto.nationalmuseum.ch",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "moto.nationalmuseum.ch",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_ping.chartbeat.net",
            "name": "ping.chartbeat.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "ping.chartbeat.net",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_prd.api.datahub-srgssr.ch",
            "name": "prd.api.datahub-srgssr.ch",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "prd.api.datahub-srgssr.ch",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_prod.ch-museum-signup.gw.mailxpert.ch",
            "name": "prod.ch-museum-signup.gw.mailxpert.ch",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "prod.ch-museum-signup.gw.mailxpert.ch",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_s.go-mpulse.net",
            "name": "s.go-mpulse.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "s.go-mpulse.net",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_srf-vod-amd.akamaized.net",
            "name": "srf-vod-amd.akamaized.net",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "srf-vod-amd.akamaized.net",
                "4 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_srf.ch",
            "name": "srf.ch",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "srf.ch",
                "53 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_srgsnitch.herokuapp.com",
            "name": "srgsnitch.herokuapp.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "srgsnitch.herokuapp.com",
                "1 Request(s)"
            ],
            "source": "browser_analysis"
        },
        {
            "id": "provider_static.chartbeat.com",
            "name": "static.chartbeat.com",
            "category": "other",
            "category_label": "other",
            "confidence": "browser",
            "risk_score": 35,
            "privacy_relevance": "niedrig",
            "evidence": [
                "static.chartbeat.com",
                "2 Request(s)"
            ],
            "source": "browser_analysis"
        }
    ],
    "operator_actions": [
        {
            "id": "action_matomo",
            "technology": "Matomo",
            "priority": "hoch",
            "owner": "Marketing/IT/Datenschutz",
            "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.",
            "guide_url": "https://saferpage.de/consent/sammlungszentrum.ch"
        },
        {
            "id": "action_provider_google_fonts",
            "technology": "Google Fonts",
            "priority": "mittel",
            "owner": "Webentwicklung/Datenschutz",
            "action": "Remote-Schriften lokal hosten oder Zweck, Anbieter, Transfer und Consent-/Rechtsgrundlage transparent dokumentieren.",
            "guide_url": "https://saferpage.de/guides/google-dienste-datenschutzfreundlich-einbinden"
        },
        {
            "id": "action_provider_consent.cookiefirst.com",
            "technology": "consent.cookiefirst.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_apache",
            "technology": "Apache",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/sammlungszentrum.ch"
        },
        {
            "id": "action_server_header",
            "technology": "Apache",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/sammlungszentrum.ch"
        },
        {
            "id": "action_provider_cloudflare",
            "technology": "Cloudflare",
            "priority": "mittel",
            "owner": "IT/Security/Vendor Owner",
            "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.",
            "guide_url": "https://saferpage.de/anbieter/sammlungszentrum.ch"
        },
        {
            "id": "action_php",
            "technology": "PHP",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_api.cookiefirst.com",
            "technology": "api.cookiefirst.com",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_api3.geo.admin.ch",
            "technology": "api3.geo.admin.ch",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        },
        {
            "id": "action_provider_c.go-mpulse.net",
            "technology": "c.go-mpulse.net",
            "priority": "mittel",
            "owner": "Website-Betrieb/Datenschutz",
            "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.",
            "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog"
        }
    ],
    "cms_playbooks": [
        {
            "id": "generic",
            "platform": "Allgemeines Website-Deployment",
            "summary": "Im passiven Check wurde kein eindeutiges CMS erkannt. Trotzdem sollten Betreiber Release, Consent, Drittanbieter, Security-Header und Nachweise wie bei einem CMS-Update behandeln.",
            "steps": [
                "Deployment-Quelle, Hosting/CDN, externe Skripte, Consent-Tool und wichtige Templates inventarisieren.",
                "Alle nicht notwendigen Drittanbieter vor Einwilligung blockieren und Anbieterzwecke dokumentieren.",
                "Security-Header, HTTPS/HSTS, Referrer-Policy, CSP und Cookie-Attribute prüfen.",
                "Nach Änderungen Re-Scan, Screenshot, JSON/CSV und Fix-Guides ablegen."
            ],
            "acceptance": [
                "Release-Änderung ist nachvollziehbar.",
                "Drittanbieter-/Cookie-Abgleich ist aktualisiert.",
                "Re-Scan und Nachweise sind verlinkt."
            ],
            "owner": "Webbetrieb/IT/Datenschutz",
            "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen",
            "rescan_url": "https://saferpage.de/?url=sammlungszentrum.ch"
        }
    ],
    "infrastructure": {
        "risk_level": "low",
        "positive_signals": [
            "Moderne TLS-Version aktiv: TLSv1.3.",
            "HSTS ist aktiv."
        ],
        "findings": [
            {
                "id": "caa_missing",
                "title": "CAA-Record fehlt",
                "public": true,
                "category": "dns",
                "severity": "info",
                "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen."
            }
        ]
    },
    "links": {
        "technology_center": "https://saferpage.de/technik/sammlungszentrum.ch",
        "json": "https://saferpage.de/technik/sammlungszentrum.ch/export",
        "csv": "https://saferpage.de/technik/sammlungszentrum.ch/export-csv",
        "markdown": "https://saferpage.de/technik/sammlungszentrum.ch/stack-md",
        "report": "https://saferpage.de/sammlungszentrum.ch",
        "vendors": "https://saferpage.de/anbieter/sammlungszentrum.ch",
        "consent": "https://saferpage.de/consent/sammlungszentrum.ch",
        "findings": "https://saferpage.de/befunde/sammlungszentrum.ch",
        "evidence": "https://saferpage.de/nachweise/sammlungszentrum.ch"
    },
    "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet."
}
