Skip to main content
All Industries

EU Industry Benchmark

Insurance

Anonymized security posture data for the insurance sector across the EU. Based on 2978 monitored sites.

46.6

Avg. Score /100

D

Avg. Grade

2978

Sites Tracked

+3.0

vs. EU Average

Critical findings in this industry

1672 of 2978 without HTTPS redirect

56.0%

1965 of 2978 with unencrypted email (no STARTTLS)

66.0%

2279 of 2978 without DMARC protection (spoofable)

77.0%

1279 of 2978 missing 3+ critical security headers

43.0%

2608 of 2978 without DNSSEC (vulnerable to DNS spoofing)

88.0%

2797 of 2978 without CAA records (unrestricted certificate issuance)

94.0%

2942 of 2978 without MTA-STS (email downgrade attacks possible)

99.0%

Grade Distribution

A
2 (0.0%)
B
65 (2.0%)
C
382 (13.0%)
D
1637 (55.0%)
F
892 (30.0%)

Security across Europe

Average security score by country — hover for details, click to explore.

Belgien: 48.8/100 (278 sites) Bulgarien: 49.8/100 (25 sites) Deutschland: 43.2/100 (1012 sites) Dänemark: 55.2/100 (24 sites) Estland: 58.4/100 (8 sites) Finnland: 56.1/100 (14 sites) Frankreich: 47.6/100 (276 sites) Griechenland: 47.8/100 (31 sites) Irland: 52.1/100 (61 sites) Italien: 45.6/100 (121 sites) Kroatien: 47.4/100 (16 sites) Lettland: 57.9/100 (10 sites) Litauen: 55.7/100 (12 sites) Luxemburg: 52.1/100 (25 sites) Niederlande: 53.0/100 (105 sites) Norwegen: 60.7/100 (10 sites) Polen: 42.0/100 (202 sites) Portugal: 48.0/100 (42 sites) Rumänien: 50.4/100 (26 sites) Schweden: 59.1/100 (14 sites) Schweiz: 54.0/100 (61 sites) Slowakei: 54.2/100 (30 sites) Slowenien: 48.6/100 (14 sites) Spanien: 46.1/100 (163 sites) Tschechien: 52.4/100 (38 sites) Ungarn: 47.2/100 (15 sites) Vereinigtes Königreich: 49.0/100 (172 sites) Zypern: 40.5/100 (10 sites) Österreich: 46.0/100 (137 sites)
Worse
Better

Score by Country

🇧🇪 Belgien
48.8 278 🇧🇬 Bulgarien
49.8 25 🇩🇪 Deutschland
43.2 1012 🇩🇰 Dänemark
55.2 24 🇪🇪 Estland
58.4 8 🇫🇮 Finnland
56.1 14 🇫🇷 Frankreich
47.6 276 🇬🇷 Griechenland
47.8 31 🇮🇪 Irland
52.1 61 🇮🇸 Island
55.3 6 🇮🇹 Italien
45.6 121 🇭🇷 Kroatien
47.4 16 🇱🇻 Lettland
57.9 10 🇱🇮 Liechtenstein
42.6 8 🇱🇹 Litauen
55.7 12 🇱🇺 Luxemburg
52.1 25 🇲🇹 Malta
46.1 12 🇳🇱 Niederlande
53.0 105 🇳🇴 Norwegen
60.7 10 🇵🇱 Polen
42.0 202 🇵🇹 Portugal
48.0 42 🇷🇴 Rumänien
50.4 26 🇸🇪 Schweden
59.1 14 🇨🇭 Schweiz
54.0 61 🇸🇰 Slowakei
54.2 30 🇸🇮 Slowenien
48.6 14 🇪🇸 Spanien
46.1 163 🇨🇿 Tschechien
52.4 38 🇭🇺 Ungarn
47.2 15 🇬🇧 Vereinigtes Königreich
49.0 172 🇨🇾 Zypern
40.5 10 🇦🇹 Österreich
46.0 137

Hosting & Data Residency

50%

EU-headquartered provider

50%

Non-EU provider (CLOUD Act / Schrems II)

Amazon Web Services (US) 283 23.2%
Cloudflare (US) 214 17.5%
IONOS (1&1) (DE) 148 12.1%
Hetzner (DE) 136 11.1%
OVHcloud (FR) 117 9.6%

Server location via IP geolocation (MaxMind GeoLite2). Company HQ from ASN registry. A site may be physically hosted in the EU but use a US-headquartered provider subject to the CLOUD Act — per Schrems II (CJEU C-311/18), this requires SCCs with supplementary measures. · GDPR Art. 44–49

How does your site compare?

Run a free security scan and see your grade instantly.

Scan your site

All data is anonymized. No individual sites are identified. Statistics updated weekly.