At the same time, 11% experienced at least once problems due to ICT related security incidents in 2018. And 32% have documents on measures, practices or procedures on ICT security.
In addition, 59% make persons employed aware of their obligations in ICT security and 13% have insurance against ICT related incidents, according to Eurostat.
In comparison, 93% of EU enterprises with 10 or more persons employed used at least one ICT security measure, control or procedure in order to ensure integrity, authenticity, availability and confidentiality of data and ICT systems in 2019.
And one in three enterprises (34%) reported having documents on measures, practices or procedures on ICT security and 62% of enterprises made staff aware of their obligations in ICT security related issues.
In addition, one in four enterprises (24%) was insured against ICT security incidents. And one in eight enterprises (12%) at least once experienced problems due to ICT related security incidents in 2018.
Meanwhile, the data also showed that one in 10 enterprises in 2019 used biometric methods for user identification and authentication.
The most common ICT security measure used by EU enterprises was keeping their software or operating systems up-to-date (87% of enterprises), followed by strong password authentication (77%), data backup to a separate location or cloud (76%) and network access control (64%).
Less than half of enterprises reported maintaining log files for analysis after security incidents (45%) and use of Virtual Private Network (VPN, 42%).
Enterprises less frequently used encryption techniques for data, documents or e-mails (38%), ICT security tests (36%), ICT risk assessment (34%) and user identification and authentication via biometric methods (10%).