In 2019, 93% of EU enterprises with 10 or more persons employed used at least one ICT security measure, control or procedure in order to ensure integrity, authenticity, availability and confidentiality of data and ICT systems. One in three enterprises (34%) reported having documents on measures, practices or procedures on ICT security. 62% of enterprises made staff aware of their obligations in ICT security related issues. One in four enterprises (24%) was insured against ICT security incidents.