Regulatory

Anonymized security posture data for the regulatory sector across the EU. Based on 90 monitored sites.

63.5

Avg. Score /100

Avg. Grade

Sites Tracked

+6.0

vs. EU Average

Critical findings in this industry

12 of 90 without HTTPS redirect

13.0%

5 of 90 with unencrypted email (no STARTTLS)

6.0%

25 of 90 without DMARC protection (spoofable)

28.0%

46 of 90 missing 3+ critical security headers

51.0%

53 of 90 without DNSSEC (vulnerable to DNS spoofing)

59.0%

67 of 90 without CAA records (unrestricted certificate issuance)

74.0%

83 of 90 without MTA-STS (email downgrade attacks possible)

92.0%

2 (2.0%)

24 (27.0%)

34 (38.0%)

23 (26.0%)

7 (8.0%)

Run a free security scan and see your grade instantly.

All data is anonymized. No individual sites are identified. Statistics updated weekly.