Skip to main content
All Industries

EU Industry Benchmark

Telecom

Anonymized security posture data for the telecom sector across the EU. Based on 370 monitored sites.

52.7

Avg. Score /100

D

Avg. Grade

370

Sites Tracked

+9.0

vs. EU Average

Critical findings in this industry

218 of 370 without HTTPS redirect

59.0%

240 of 370 with unencrypted email (no STARTTLS)

65.0%

207 of 370 without DMARC protection (spoofable)

56.0%

100 of 370 missing 3+ critical security headers

27.0%

315 of 370 without DNSSEC (vulnerable to DNS spoofing)

85.0%

309 of 370 without CAA records (unrestricted certificate issuance)

84.0%

357 of 370 without MTA-STS (email downgrade attacks possible)

96.0%

Grade Distribution

A
0 (0.0%)
B
18 (5.0%)
C
91 (25.0%)
D
212 (57.0%)
F
49 (13.0%)

Security across Europe

Average security score by country — hover for details, click to explore.

Austria: 54.2/100 (13 sites) Belgium: 53.8/100 (17 sites) Bulgaria: 49.9/100 (7 sites) Croatia: 50.0/100 (8 sites) Cyprus: 46.2/100 (5 sites) Czech Republic: 63.4/100 (8 sites) Denmark: 52.4/100 (7 sites) Estonia: 50.2/100 (9 sites) Finland: 54.1/100 (11 sites) France: 49.1/100 (18 sites) Germany: 51.9/100 (36 sites) Greece: 51.0/100 (6 sites) Hungary: 52.3/100 (6 sites) Ireland: 45.8/100 (5 sites) Italy: 52.4/100 (24 sites) Latvia: 57.6/100 (7 sites) Lithuania: 51.6/100 (8 sites) Luxembourg: 49.5/100 (10 sites) Netherlands: 56.9/100 (17 sites) Norway: 54.2/100 (12 sites) Poland: 51.9/100 (18 sites) Portugal: 57.0/100 (11 sites) Romania: 48.8/100 (8 sites) Slovakia: 54.3/100 (7 sites) Slovenia: 48.7/100 (6 sites) Spain: 51.5/100 (22 sites) Sweden: 56.1/100 (17 sites) Switzerland: 59.2/100 (12 sites) United Kingdom: 49.7/100 (24 sites)
Worse
Better

Score by Country

🇦🇹 Austria
54.2 13 🇧🇪 Belgium
53.8 17 🇧🇬 Bulgaria
49.9 7 🇭🇷 Croatia
50.0 8 🇨🇾 Cyprus
46.2 5 🇨🇿 Czech Republic
63.4 8 🇩🇰 Denmark
52.4 7 🇪🇪 Estonia
50.2 9 🇫🇮 Finland
54.1 11 🇫🇷 France
49.1 18 🇩🇪 Germany
51.9 36 🇬🇷 Greece
51.0 6 🇭🇺 Hungary
52.3 6 🇮🇸 Iceland
48.8 4 🇮🇪 Ireland
45.8 5 🇮🇹 Italy
52.4 24 🇱🇻 Latvia
57.6 7 🇱🇮 Liechtenstein
51.5 2 🇱🇹 Lithuania
51.6 8 🇱🇺 Luxembourg
49.5 10 🇲🇹 Malta
56.2 5 🇳🇱 Netherlands
56.9 17 🇳🇴 Norway
54.2 12 🇵🇱 Poland
51.9 18 🇵🇹 Portugal
57.0 11 🇷🇴 Romania
48.8 8 🇸🇰 Slovakia
54.3 7 🇸🇮 Slovenia
48.7 6 🇪🇸 Spain
51.5 22 🇸🇪 Sweden
56.1 17 🇨🇭 Switzerland
59.2 12 🇬🇧 United Kingdom
49.7 24

Hosting & Data Residency

30%

EU-headquartered provider

70%

Non-EU provider (CLOUD Act / Schrems II)

Cloudflare (US) 42 23.3%
Amazon Web Services (US) 42 23.3%
Imperva/Incapsula (US) 25 13.9%
Microsoft Azure (US) 19 10.6%
Google Cloud (US) 16 8.9%

Server location via IP geolocation (MaxMind GeoLite2). Company HQ from ASN registry. A site may be physically hosted in the EU but use a US-headquartered provider subject to the CLOUD Act — per Schrems II (CJEU C-311/18), this requires SCCs with supplementary measures. · GDPR Art. 44–49

How does your site compare?

Run a free security scan and see your grade instantly.

Scan your site

All data is anonymized. No individual sites are identified. Statistics updated weekly.