{ "schema": "https://saferpage.de/schemas/trust-access-groups.v1", "generated_at": "2026-06-09T04:30:23+00:00", "domain": "eltern.de", "available": true, "scan": { "id": "54be3ff2-b3c0-42f0-9d4c-5558cc0620a3", "checked_at": "2026-06-08 21:35:35.801475+02" }, "status": "access_groups_blueprint_ready", "summary": "Trust Access Groups für eltern.de: 5 Gruppen, 6 Dokumentzuordnungen, 5 Connection-Templates, Score 100.", "metrics": { "access_group_count": 5, "document_assignment_count": 6, "connection_assignment_count": 5, "bulk_operation_count": 5, "guardrail_count": 6, "security_score": 70, "access_group_score": 100 }, "access_groups": [ { "id": "approved_customers", "label": "Approved Customers", "purpose": "Standard-Nachweise nach NDA oder Freigabe für alle genehmigten Viewer.", "risk_level": "medium", "document_ids": [ "DOC-03", "DOC-04" ], "owner": "Trust Operations", "assignment_rule": "Nur nach genehmigter Connection, NDA-Status und Ablaufdatum." }, { "id": "enterprise_security", "label": "Enterprise Security", "purpose": "Detailliertere Security-/Audit-Unterlagen für Enterprise- oder strategische Deals.", "risk_level": "high", "document_ids": [ "DOC-03", "DOC-05" ], "owner": "Security/Compliance", "assignment_rule": "Nur konkrete E-Mail oder Kundendomain mit Sales/Legal-Freigabe." }, { "id": "eu_dach_customers", "label": "EU / DACH Customers", "purpose": "Regionale Privacy-, Transfer- und Subprozessorenunterlagen für DACH/EU-Kunden.", "risk_level": "medium", "document_ids": [ "DOC-02", "DOC-04" ], "owner": "Datenschutz/Legal", "assignment_rule": "Nur bei DACH/EU-Kontext und lokalem Legal-Review." }, { "id": "partners", "label": "Partners", "purpose": "Partner- oder Reseller-spezifische Dokumente und Q&A.", "risk_level": "medium", "document_ids": [ "DOC-03" ], "owner": "Partner/Legal", "assignment_rule": "Nur mit Partnervertrag, aktiver Connection und gesondertem Ablauf." }, { "id": "internal_only", "label": "Internal Only", "purpose": "Quellen für AI, Betreiberreview und interne Workflows ohne Trust-Center-Sichtbarkeit.", "risk_level": "high", "document_ids": [ "DOC-06" ], "owner": "Knowledge Owner", "assignment_rule": "Nie extern sichtbar; nur für Operator/AI mit interner Freigabe." } ], "document_assignments": [ { "document_id": "DOC-01", "title": "Öffentlicher Kurzreport", "access_level": "anyone", "group_ids": [], "fallback_if_group_deleted": "public" }, { "document_id": "DOC-02", "title": "Datenschutz-Center Export", "access_level": "anyone", "group_ids": [ "eu_dach_customers" ], "fallback_if_group_deleted": "anyone" }, { "document_id": "DOC-03", "title": "Audit-Response Paket", "access_level": "approved_visitors", "group_ids": [ "approved_customers", "enterprise_security", "partners" ], "fallback_if_group_deleted": "approved_visitors" }, { "document_id": "DOC-04", "title": "Anbieter- und Subprozessorenregister", "access_level": "some_approved_visitors", "group_ids": [ "approved_customers", "eu_dach_customers" ], "fallback_if_group_deleted": "approved_visitors" }, { "document_id": "DOC-05", "title": "Secure Delivery Package", "access_level": "some_approved_visitors", "group_ids": [ "enterprise_security" ], "fallback_if_group_deleted": "approved_visitors_review_required" }, { "document_id": "DOC-06", "title": "Internal Knowledge Source", "access_level": "internal_only", "group_ids": [ "internal_only" ], "fallback_if_group_deleted": "internal_only" } ], "connection_assignments": [ { "id": "CONN-template-01", "subject": "Bestandskunde-Domain", "assignment_type": "domain", "group_ids": [ "approved_customers" ], "requires_nda": true, "expires_days": 30 }, { "id": "CONN-template-02", "subject": "Enterprise Security Review", "assignment_type": "email_or_domain", "group_ids": [ "approved_customers", "enterprise_security" ], "requires_nda": true, "expires_days": 14 }, { "id": "CONN-template-03", "subject": "DACH Legal Review", "assignment_type": "domain", "group_ids": [ "approved_customers", "eu_dach_customers" ], "requires_nda": true, "expires_days": 30 }, { "id": "CONN-template-04", "subject": "Partnerkontakt", "assignment_type": "email", "group_ids": [ "partners" ], "requires_nda": true, "expires_days": 21 }, { "id": "CONN-template-05", "subject": "Interner Betreiber/Test", "assignment_type": "operator_role", "group_ids": [ "internal_only" ], "requires_nda": false, "expires_days": 0 } ], "bulk_operations": [ { "id": "bulk_assign_docs", "label": "Mehrere Dokumente Access Group zuweisen", "scope": "selected_documents_or_folder", "guardrail": "Vor Update betroffene Dokumente, alte Gruppen und Zielgruppe in Preview prüfen." }, { "id": "bulk_remove_group", "label": "Access Group von Dokumenten entfernen", "scope": "selected_documents_or_folder", "guardrail": "Fallback-Level explizit setzen; keine vertraulichen Dokumente versehentlich für alle Approved freigeben." }, { "id": "bulk_ai_access", "label": "ConveyorAI/Operator-Nutzung getrennt ändern", "scope": "selected_documents", "guardrail": "AI-Nutzung darf Trust-Center-Sichtbarkeit nicht verändern." }, { "id": "rename_group", "label": "Gruppe umbenennen", "scope": "global_group", "guardrail": "Rename aktualisiert Dokumente und Connections; Audit-Event und Preview danach erzeugen." }, { "id": "delete_group", "label": "Gruppe löschen", "scope": "global_group", "guardrail": "Erst alle Dokument- und Connection-Zuordnungen lösen; sonst Review blockieren." } ], "guardrails": [ { "id": "start_small", "label": "Mit wenigen klar benannten Gruppen starten, nicht mit generischen Gruppennamen", "status": "recommended" }, { "id": "no_group_name_public", "label": "Besucher sehen nur verfügbare Inhalte, nicht interne Gruppennamen", "status": "enforced" }, { "id": "preview_each_group", "label": "Jede Gruppe vor Veröffentlichung mit Public, Approved und Auditor View testen", "status": "required" }, { "id": "domain_and_email_scope", "label": "Domain- und E-Mail-Zuweisungen getrennt auditieren", "status": "required" }, { "id": "delete_fallback_review", "label": "Gruppenlöschung darf sensible Dokumente nicht unkontrolliert freigeben", "status": "required" }, { "id": "viewer_privacy", "label": "Viewer-Identitäten und Gruppenzuordnung nicht öffentlich exportieren", "status": "enforced" } ], "group_contract": { "does_not_create_real_groups": true, "does_not_grant_access": true, "does_not_export_viewer_identity": true, "required_before_live": [ "domain_claim", "viewer_auth", "document_storage", "access_level_engine", "group_membership_engine", "bulk_change_audit", "audience_preview", "revocation_sync", "viewer_deletion" ] }, "links": { "html": "https://saferpage.de/trust/eltern.de/gruppen", "json": "https://saferpage.de/trust/eltern.de/gruppen-json", "csv": "https://saferpage.de/trust/eltern.de/gruppen-csv", "markdown": "https://saferpage.de/trust/eltern.de/gruppen-md", "trust_center": "https://saferpage.de/trust/eltern.de", "document_lifecycle": "https://saferpage.de/trust/eltern.de/dokumente", "content_segmentation": "https://saferpage.de/trust/eltern.de/segmente", "connections": "https://saferpage.de/trust/eltern.de/connections", "audience_preview": "https://saferpage.de/trust/eltern.de/vorschau", "access_requests": "https://saferpage.de/datenraum/eltern.de/zugriffe", "access_automation": "https://saferpage.de/datenraum/eltern.de/automatisierung", "viewer_privacy": "https://saferpage.de/trust/eltern.de/viewer-datenschutz", "team_permissions": "https://saferpage.de/trust/eltern.de/team-rollen" }, "disclaimer": "Trust Access Groups ist ein Betreiber-Blueprint. Diese öffentliche Seite erstellt keine echten Gruppen, gewährt keinen Zugriff und veröffentlicht keine Viewer-Identitäten." }