Skip to main content
All Industries

EU Industry Benchmark

Real Estate

Anonymized security posture data for the real estate sector across the EU. Based on 11979 monitored sites.

38.5

Avg. Score /100

F

Avg. Grade

11979

Sites Tracked

-2.0

vs. EU Average

Critical findings in this industry

10383 of 11979 without HTTPS redirect

87.0%

11618 of 11979 with unencrypted email (no STARTTLS)

97.0%

11959 of 11979 without DMARC protection (spoofable)

100.0%

4283 of 11979 missing 3+ critical security headers

36.0%

10548 of 11979 without DNSSEC (vulnerable to DNS spoofing)

88.0%

11648 of 11979 without CAA records (unrestricted certificate issuance)

97.0%

11916 of 11979 without MTA-STS (email downgrade attacks possible)

99.0%

Grade Distribution

A
0 (0.0%)
B
2 (0.0%)
C
163 (1.0%)
D
4758 (40.0%)
F
7056 (59.0%)

Security across Europe

Average security score by country — hover for details, click to explore.

Hosting & Data Residency

58%

EU-headquartered provider

42%

Non-EU provider (CLOUD Act / Schrems II)

OVHcloud (FR) 1706 26.1%
Cloudflare (US) 1138 17.4%
Amazon Web Services (US) 1130 17.3%
IONOS (1&1) (DE) 718 11.0%
Hetzner (DE) 546 8.4%

Server location via IP geolocation (MaxMind GeoLite2). Company HQ from ASN registry. A site may be physically hosted in the EU but use a US-headquartered provider subject to the CLOUD Act — per Schrems II (CJEU C-311/18), this requires SCCs with supplementary measures. · GDPR Art. 44–49

How does your site compare?

Run a free security scan and see your grade instantly.

Scan your site

All data is anonymized. No individual sites are identified. Statistics updated weekly.