{ "schema": "https://saferpage.de/schemas/technology-detection.v1", "generated_at": "2026-06-08T15:52:41+00:00", "domain": "shop.spiegel.de", "available": true, "scan": { "id": "5dfe126b-0078-489c-82a9-ec700802d99e", "checked_at": "2026-06-07 10:56:25.803654+02" }, "summary": "shop.spiegel.de: 7 sichtbare Technik-/Anbietersignale, 0 mit hoher Datenschutzrelevanz, 1 CMS-/Shop-Hinweis(e).", "metrics": { "technology_count": 7, "high_privacy_relevance_count": 0, "cms_or_shop_count": 1, "external_script_count": 2, "request_count": 64, "third_party_domain_count": 4, "infrastructure_finding_count": 1 }, "signals": { "server_header": "nginx/1.26.3", "generator": "", "x_powered_by": "", "asset_hosts": [ "sp-spiegel-de.spiegel.de", "assets.adobedtm.com", "shop.spiegel.de", "cdn.shop.spiegel.de" ], "external_scripts": [ "https://sp-spiegel-de.spiegel.de/unified/wrapperMessagingWithoutDetection.js", "https://assets.adobedtm.com/cc10f7b4369d/f4b645a84456/launch-ba5f2a1e4521.min.js" ], "tls_version": "TLSv1.3", "certificate_issuer": "E7", "renderer": "playwright-chromium" }, "category_counts": { "Shop": 1, "other": 4, "Server": 2 }, "technologies": [ { "id": "shopware", "name": "Shopware", "category": "ecommerce", "category_label": "Shop", "confidence": "medium", "risk_score": 52, "privacy_relevance": "mittel", "evidence": [ "Signal: shopware" ], "source": "technology_analysis" }, { "id": "provider_cdn.shop.spiegel.de", "name": "cdn.shop.spiegel.de", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "cdn.shop.spiegel.de", "28 Request(s)" ], "source": "browser_analysis" }, { "id": "nginx", "name": "nginx", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx/1.26.3" ], "source": "technology_analysis" }, { "id": "server_header", "name": "nginx/1.26.3", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: nginx/1.26.3" ], "source": "technology_signals" }, { "id": "provider_assets.adobedtm.com", "name": "assets.adobedtm.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "assets.adobedtm.com", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_sams.spiegel.de", "name": "sams.spiegel.de", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "sams.spiegel.de", "1 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_sp-spiegel-de.spiegel.de", "name": "sp-spiegel-de.spiegel.de", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "sp-spiegel-de.spiegel.de", "10 Request(s)" ], "source": "browser_analysis" } ], "operator_actions": [ { "id": "action_shopware", "technology": "Shopware", "priority": "mittel", "owner": "Webbetrieb/IT", "action": "CMS, Themes, Plugins und sichtbare Versionshinweise aktualisieren, unnötige Plugins entfernen und Re-Scan nach Deployment ausführen.", "guide_url": "https://saferpage.de/guides/sichtbare-versionen-und-cves-beheben" }, { "id": "action_provider_cdn.shop.spiegel.de", "technology": "cdn.shop.spiegel.de", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_nginx", "technology": "nginx", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/shop.spiegel.de" }, { "id": "action_server_header", "technology": "nginx/1.26.3", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/shop.spiegel.de" }, { "id": "action_provider_assets.adobedtm.com", "technology": "assets.adobedtm.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_sams.spiegel.de", "technology": "sams.spiegel.de", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_provider_sp-spiegel-de.spiegel.de", "technology": "sp-spiegel-de.spiegel.de", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" } ], "infrastructure": { "risk_level": "low", "positive_signals": [ "Moderne TLS-Version aktiv: TLSv1.3.", "HSTS ist aktiv.", "DMARC ist für die Domain vorhanden." ], "findings": [ { "id": "caa_missing", "title": "CAA-Record fehlt", "public": true, "category": "dns", "severity": "info", "recommendation": "Optional CAA setzen, um erlaubte Zertifikatsaussteller festzulegen." } ] }, "links": { "technology_center": "https://saferpage.de/technik/shop.spiegel.de", "json": "https://saferpage.de/technik/shop.spiegel.de/export", "csv": "https://saferpage.de/technik/shop.spiegel.de/export-csv", "markdown": "https://saferpage.de/technik/shop.spiegel.de/stack-md", "report": "https://saferpage.de/shop.spiegel.de", "vendors": "https://saferpage.de/anbieter/shop.spiegel.de", "consent": "https://saferpage.de/consent/shop.spiegel.de", "findings": "https://saferpage.de/befunde/shop.spiegel.de", "evidence": "https://saferpage.de/nachweise/shop.spiegel.de" }, "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet." }