Confidence In Infosoc Analytical Report V30.4.09
Flash EB No 238 – Animal Cloning
Analytical report
Flash Eurobarometer
European
Commission
Confidence in the
Information Society
Analytical Report
Fieldwork: September 2008
Publication: May 2009
tion
aniza
r
g
O
Gallup
The
–
250
t
er
barome
This survey was requested by Directorate General Information Society and Media and
ro
coordinated by Directorate General Communication
Eu
s
h
This document does not represent the point of view of the European Commission.
page
1
Fla
The interpretations and opinions contained in it are solely those of the authors.
Flash EB Series #250
Confidence in the
Information Society
Conducted by
The Gallup Organization, Hungary
upon the request of
Directorate General Information Society and
Media
Survey coordinated by
Directorate General Communication
This document does not represent the point of
view of the European Commission.
The interpretations and opinions contained in it
are solely those of the authors.
THE GALLUP ORGANIZATION
page
2
Flash EB No 250 – Confidence in the Information Society
Analytical Report
Table of contents
Table of contents ..................................................................................................................................... 3
Introduction ............................................................................................................................................. 4
Main findings .......................................................................................................................................... 6
1. Awareness of online security hazards ................................................................................................. 8
1.1 Viruses........................................................................................................................................... 8
1.2 Phishing......................................................................................................................................... 9
1.3 Abuse of personal information .................................................................................................... 10
1.4 Spam............................................................................................................................................ 10
1.5 Child safety ................................................................................................................................. 11
1.6 Botnets......................................................................................................................................... 11
2. Confidence in Internet transactions ................................................................................................... 12
3. Security precautions .......................................................................................................................... 14
3.1 Security technologies .................................................................................................................. 16
3.2 Risk avoidance ............................................................................................................................ 17
3.3 Barriers to security measures ...................................................................................................... 19
4. Security problems faced .................................................................................................................... 21
4.1 Infected with viruses ................................................................................................................... 21
4.2 Victims of phishing ..................................................................................................................... 22
4.3 Abuse of personal information .................................................................................................... 22
4.4 Recipients of excessive spam ...................................................................................................... 23
4.5 Experienced security issues related to children........................................................................... 24
4.6 Becoming part of botnets ............................................................................................................ 24
5. Damages suffered .............................................................................................................................. 25
5.1 Reports of various damages by country and user segments ........................................................ 26
5.2 Security problems and inflicted damages.................................................................................... 28
6. Responsibility for Internet security ................................................................................................... 29
7. Improving Internet security skills...................................................................................................... 31
8. Annex tables...................................................................................................................................... 34
9. Survey details .................................................................................................................................... 51
10. Questionnaire .................................................................................................................................. 55
page
3
Analytical Report
Flash EB No 250 – Confidence in the Information Society
Introduction
This Flash Eurobarometer survey (#250) interviewed home internet users of the EU to appraise their
confidence in the information society. Indeed, reliable and up-to-date statistical data on citizens'
confidence in the information society are not available but are needed for effective and meaningful
ICT security policy-making.
Because confidence is not a measurable feature, data indirectly reflecting confidence were selected;
the survey gathered data to:
• evaluate the level of ICT security awareness / knowledge about potential and most typical
risks
• quantify the ICT security-related damages experienced by home internet users (detected
incidents, loss of money or time)
• know about the ICT security behaviour of (and measures taken by) the home internet users
The survey’s fieldwork was carried out between 16 and 20 September 2008. Starting with a random
sample of the general population aged 15 years and above, respondents were selected through a
screening process. The eligibility criteria to be interviewed in the survey were that the persons must
use the Internet from home, at least once a month. After the selection process, 12.799 at-home internet
users aged 15 years and above were interviewed in the 27 EU Member States. Please note, that
persons who are probably users of the Internet, but do not have access at home, were not part of the
target population because those who use the Internet from locations outside their home (i.e. Internet
cafes or at work) are usually not responsible for ensuring the security of the equipment they use.
Interviews were carried out via telephone, approximately 500 in each Member State (in Cyprus,
Luxembourg and Malta the targeted size was 250).
Most of the Internet users interviewed (defined as having accessed the Internet from home in the past
one month) use the Internet on a daily basis: at the EU level 70% indicated daily use, 27% use it at
least every week, and only 3% replied they use it less than every week.
Please note that all results in this report refer to those who use the internet from home and not
the whole general population.
To estimate the EU average, results were weighted reflecting the number of home Internet users in
each Member State based on Eurostat data (Romania, for example, despite its large population has
relatively fewer internet users - see the respective overview table in the Survey Details section -
compared to countries with smaller population size, but significantly higher internet penetration rates.
As a result, Romania accounts for about 12% of the EU general population, but only for 4% of the
internet users in the EU. The weighting scheme ensured that Romania has a proportional influence in
the EU average reflecting the size of the number of internet users and not the total population).
Samples within Member States are not weighted.
The applied weight factor reflects the proportion of internet population in each Member State as
provided by Eurostat (Statistics on Information Society, data series for 2007). This is only an
approximation of the true weights, as the target population of this survey (used the internet from home
at least once in the month prior to interview, aged 15+) differed slightly from the one the internet
usage is provided for by Eurostat (used the internet from home at least once in the past 3 months, aged
15-741). Nevertheless, this difference is rather minimal, thus the Eurostat reference data was
considered as applicable for calculating the country weights.
1 For Eurostat Statistics on Information Society metadata please refer to
http://epp.eurostat.ec.europa.eu/cache/ITY_SDDS/EN/isoc_ci_base.htm
page
4
Flash EB No 250 – Confidence in the Information Society
Analytical Report
The maximum sampling error associated with the typical sample size used in this survey (N=500) is
about +/-4.4%, at a 95% confidence level. (That is, with this sample size, in 95 out of 100 repeated
measurements the results would differ at most by 4.4% (in the positive or negative direction)
compared to the “true” value in the total sampled population.) However, the statistical margin of error
varies according to the estimate itself, with results around 50% being most prone to errors, and lower
estimates are more solid (e.g. with this sample size a parameter that is estimated to be 10% have an
associated margin of error of 2.6% only). But on the other hand, attrition in the analysis (for example
if we analyse only those who satisfy some preliminary parameter, e.g. have heard about a specific
security risk) decreases the number of cases in the subsequent analyses and thus increases that
associated margin of error.
More details on survey methodology are included in the Annex of this report.
page
5
Analytical Report
Flash EB No 250 – Confidence in the Information Society
Main findings
The reader should be reminded that there is a difference between the perception
of security and the actual level of security. This report is meant to provide
insights about confidence in the Information Society, but it does not answer to the
question whether or not those who are confident indeed have the reason to feel
secure. The reader is advised to bear this in mind: the survey measured attitudes
and because of the complexity of the issue it cannot provide a reliable picture
on actual technical preparedness of respondents and their computer to
counter the risks posed by internet activities.
• Some Internet users in the EU have a perception of security that makes them confident that
transactions over the Internet are safe. However, only 12% believe that these are completely safe,
and 46% assume they are rather safe but 42% do not have confidence in these transactions.
• One out of ten European Internet users believe that online transactions are not safe at all, and
19% believe that these are “not really” safe – including those who cannot tell whether such
transactions are safe or not, almost four in ten users (39%) have significant doubts regarding
Internet safety.
• Users are very well informed about the existence of typical threats. Computer viruses are the
best-known hazards: virtually every Internet user confirmed to be aware of this potential danger
(97% on EU-27 level).
• Consequently, there are very few Internet users in the EU who say that they do not protect
themselves against Internet-related security hazards2. Only a small minority of European
Internet users agree that they do not implement (some) security measures because they do not feel
threatened (10%), or because these are too expensive (7%) or because they don’t know how to use
them (6%).
• On the other hand, almost every Internet user in the European Union applies some preventive
technology aimed to safeguard computers connected to the Internet and the data they store: 96%
confirm using some antivirus, spam filter or firewall application. More than a third (35%)
indicated that they (also) use alternative techniques to increase their safety while browsing the
Internet.
• Risk avoidance online behaviour was also widely reported; users rarely give out personal data
on the Internet (avoids as much as possible: 86%), and they rarely engage in peer-to-peer file
transfers with people they don’t know (81% indicate refraining from such activity)). However,
only a minority (although a very significant minority) do not carry out financial transactions over
the Internet (42%).
• Despite the efforts users make in order to protect the privacy of their online communications and
the integrity of their systems, many users have experienced security problems in the past.
Looking at the past five years, 65% of EU Internet users reported being the victim of excessive
spamming and 46% detected viruses on their computers. Considering all tested security problems,
only about one in five (22%) of all EU Internet users reported that none of these problems were
detected on their system.
• The security problems typically caused time loss for users, but harder-hitting damages were
reported by relatively few of those who otherwise reported some security problem: Loss of non-
2 The survey did not ask if the security products were indeed switched on, currently licensed to operate, regularly
updated, etc. The survey did not ask separately the availability of anti-virus, firewall, and content filtering on the
users’ computers, as the primary objective was to get an insight about the users’ perception of their safety.
page
6
Flash EB No 250 – Confidence in the Information Society
Analytical Report
personal data (e.g. damaged files, etc.) was the second most frequent result of Internet security
problems (18%). Only 16% of all internet users who encountered some security problem over the
past five years also report direct financial losses (e.g. money stolen, computer repair costs, loss of
valuable data).
• Three quarters of Internet users believe that they personally are responsible for ensuring their
protection from Internet-related security hazards (75%). However, the majority of users also
believe that their Internet service providers (52%) as well as those organisations that provide
online services (51%) are also accountable for securing online transactions. Considerably fewer
users feel that public authorities also have a responsibility regarding problems related to online
security (31%).
• The survey asked Internet users if they would be interested in participating in practical training
course on Internet security. Seven percent of all Internet users in the EU would consider
attending such a course if it was offered for a charge, and 24% are open to the idea if this training
were free. Overall, 67% of EU Internet users would not be willing to take part in such a course,
mostly because they are confident that they know enough (31%); or on the contrary, they think
that their current IT skill level is insufficient to meaningfully gain from such training (17%).
page
7
Analytical Report
Flash EB No 250 – Confidence in the Information Society
1. Awareness of online security hazards
Internet users seem to be well aware of the various hazards their online activity presents to them. Even
the least known hazard (that of becoming a part of a ‘botnet’) was confirmed as something that more
than eight out of ten users are already aware of.
Awareness of the existence of security problems related to Internet usage
Malicious software (ex. computer viruses)
97
damaging files or computers
Unsolicited emails ('Spam')
95
Children accessing inappropriate web-sites or
92
connecting with potentially dangerous persons
Messages sent by fraudsters to acquire
92
personal data in a misleading way ("Phishing")
Privacy violations like leakage or abuse of
90
personal information sent on the internet
Personal computers remotely "possessed" by ill intentioned
81
persons to attack other computers ('botnets')
Q2. Are you aware of the existence of the following security problems related to internet usage?
Base: all respondents
% of ‘Yes’, EU27
As the graph above illustrates, computer viruses are the best-known hazards the Internet presents to
one’s computer and digitally stored data. Virtually every Internet user confirmed that they are aware of
this potential danger (97% on EU-27 level). The second most frequently recognised problem is that of
spam, with 95% confirming that they are aware that unsolicited emails are often sent to email account
holders. Ninety-two percent of EU Internet users are aware that there are added potential dangers if a
child is browsing the Internet (inappropriate content or contacts with potentially dangerous persons),
and the same proportion is aware that users’ personal information might be obtained fraudulently, via
phishing. Nine out of ten users are conscious that their privacy may be violated by an abuse of their
personal information sent via the Internet (90%). Finally, as indicated, 81% claim to be aware that
there computer may be part of a botnet.
Country variations, as one can expect with such high figures, are only slight (as detailed below). EU
Internet users are generally aware of the potential hazards regardless of the country of residence
1.1 Viruses
Internet users are (or at least claim to be) generally well aware that by browsing the Internet their
systems might be exposed to web pages that intend to spread computer viruses that are designed to
damage hardware or data. Among all Member States, Maltese users were the most likely to confirm
that they are aware of such threats with a full 100%, but the awareness level was very close to this
figure in 11 more Member States, where at least 98% of users indicated that they are conscious of such
hazards. The lowest figure in this regard was detected in Ireland, where 90% of users reported that
they know that their systems might be infected with viruses that could potentially damage their
computers and files the awareness was also low among Internet users in Cyprus (91%) and Romania
(92%).
page
8
Flash EB No 250 – Confidence in the Information Society
Analytical Report
Awareness of the existence of security problems related to Internet usage
Malicious software (ex. computer viruses) damaging files or computers
100 99 99 99 99 99 98 98 98 98 98 98 97 97 97 97 96 96 96 96
100
95 94 94 93 93 92 91 90
75
50
25
0
7
IT
MT
2
HU
LV
FI
CZ
DE
SI
UK
AT
SE
PT
EE
FR
LU
LT
SK
NL
EL
PL
DK
ES
BG
BE
RO
CY
IE
EU
Q2. Are you aware of the existence of the following security problems related to internet usage?
Base: all respondents
% of ‘Yes’, by country
There is little or no variation in awareness levels between the various user segments. The
overwhelming majority in each group (ranging from 94% to 98%) are familiar with the threat that
viruses pose to computers, see Annex Table 2.b.
1.2 Phishing
Phishing is the fraudulent process of attempting to acquire sensitive information such as usernames,
passwords or credit card details by acting as a trustworthy entity in an electronic communication. Once
again, the vast majority of Internet users in each Member State are aware of this danger, the least so in
Bulgaria (77%), Romania (75%) and Belgium (73%). At the top of the list are Internet users from
Finland (with an awareness level of 98%), Germany (97%) and the UK (96%).
Awareness of the existence of security problems related to Internet usage
Messages sent by fraudsters to acquire personal data in a misleading way ("Phishing")
98 97 96
100
94 94 94 94 94 94 93 93 92 92 92 91 89 89 89 89 87 86 85 85 84 83 77 75 73
75
50
25
0
FI
DE
UK
PT
AT
SE
EE
MT
LU
SI
27
HU
PL
EL
NL
IT
SK
ES
CY
DK
FR
IE
CZ
LT
LV
BG
RO
BE
EU
Q2. Are you aware of the existence of the following security problems related to internet usage?
Base: all respondents
% of ‘Yes’, by country
Looking at the various user segments, relatively speaking the least educated (primary education: 86%)
and youngest (87%) Internet users were the least aware of phishing threats, but the range of variance is
again very small considering all user segments; from the aforementioned 86% to 94%, see Annex
Table 2.b.
page
9
Analytical Report
Flash EB No 250 – Confidence in the Information Society
1.3 Abuse of personal information
Criminals might use the Internet to steal personal information in other ways as well, by acquiring
personal information and acting in the name of some other person, or by using some other persons’
credit card number. While the vast majority (at least eight in ten users in the Member States) know of
this potential hazard, the awareness level is markedly lower in Romania (69%), Bulgaria and Belgium
(73% both). Best informed are users in the UK (97%), Portugal (96%) and Luxembourg (95%).
Awareness of the existence of security problems related to Internet usage
Privacy violations like leakage or abuse of personal information sent on the internet
(including theft of identity and of credit card numbers)
97 96
100
95 93 93 92 92 92 92 92 91 91 90 90 89 89 89 88 88 87 85 85 85 81 78 73 73
75
69
50
25
0
UK
PT
LU
DE
PL
SI
FI
SE
IT
EE
MT
27
HU
AT
EL
CY
SK
ES
NL
LT
IE
FR
LV
DK
CZ
BG
BE
RO
EU
Q2. Are you aware of the existence of the following security problems related to internet usage?
Base: all respondents
% of ‘Yes’, by country
The variations according to user segments are in this regard more pronounced then in the first two
instances, however the pattern is very similar. Those with the lowest education (83%), in the youngest
age group (84%) and in the manual worker segment (83%) are least aware of such potential security
issues, while the awareness level goes as high as 94% among those with higher degrees of education.
See Annex Table 2.b for further details.
1.4 Spam
Awareness of the existence of security problems related to Internet usage
Unsolicited emails ('Spam')
98 98 98 98 97 97 97 97 97 96
100
95 95 93 93 93 93 92 92 91 91 90 87 85 80 77 74 71
75
67
50
25
0
7
DE
FI
AT
PT
LU
MT
SE
UK
NL
SI
FR
2
DK
EE
HU
PL
ES
IT
BE
IE
CZ
LV
LT
SK
EL
RO
BG
CY
EU
Q2. Are you aware of the existence of the following security problems related to internet usage?
Base: all respondents
% of ‘Yes’, by country
page
10
Flash EB No 250 – Confidence in the Information Society
Analytical Report
Spam – that most often comes in the form of unsolicited bulk emails – can be dangerous (containing or
pointing to malicious content) but most often it simply annoys Internet users by posing a time burden
on their activity. Like the other potential hazards, spam is also widely recognised as an adverse effect
of Internet usage; at least eight in ten users in most Member States are familiar with it. The awareness
level is once again markedly lower in the two newest Member States (Romania: 74%; Bulgaria: 71%),
but also in the Greek speaking countries (Greece: 77%; Cyprus: 67%).
Spamming is very well known by most Internet users regardless of the segment to which they belong;
the level of awareness ranges from 90% to 97% (Annex table 2.b).
1.5 Child safety
With the exception of one Member State (Romania: 69%) at least eight in ten Internet users are aware
that children’s use of the Internet is potentially hazardous, in that children might access inappropriate
content or come in contact with potentially dangerous persons. Most aware of this are the UK (99%)
and Maltese (98%) users.
Awareness of the existence of security problems related to Internet usage
Children accessing inappropriate web-sites or connecting with potentially dangerous persons
99 98 97 96 96
100
95 95 94 92 92 92 92 92 92 91 90 90 90 89 88 87 86 83 81 80 80 80
75
69
50
25
0
7
UK
MT
FR
HU
SE
LU
PT
SI
LV
DE
ES
PL
EE
IT
CY
FI
NL
EL
AT
IE
BG
SK
DK
LT
CZ
BE
RO
EU2
Q2. Are you aware of the existence of the following security problems related to internet usage?
Base: all respondents
% of ‘Yes’, by country
Child safety issues are also extremely widely known in every user segment; awareness levels range
from 90% to 94% (Annex table 2.b).
1.6 Botnets
The least recognised hazard is that one’s computer could be taken over by malicious code and used in
distributed Internet attacks. While almost every user is aware of this danger in Portugal (93%, see
graph on the next page), Finland and Sweden (89% both), in nine Member States this hazard is known
by only three quarters or less of home Internet users. Least aware are Bulgarian users (only 60% are
familiar with this potential hazard).
The awareness levels very somewhat when we compare various user segments, the likely more tech-
savvy segments are more aware of such threats (daily users: 84% versus 75% of less regular users,
men: 85% versus 77% of women) – see Annex table 2.b.
page
11
Analytical Report
Flash EB No 250 – Confidence in the Information Society
Awareness of the existence of security problems related to Internet usage
Personal computers remotely "possessed" by ill intentioned persons to attack other computers
('botnets'), that is they manage to control somebody's computer without the victim being aware of it
100
93 89 89 88 87 85 84 83 83 83 82 81 81 79 78 78 77 76 76 75 74 74 74
75
70 69 68 67 60
50
25
0
7
PT
FI
SE
MT
FR
DE
SI
EE
LU
NL
PL
UK
ES
DK
CY
CZ
IE
LV
LT
IT
HU
EL
AT
SK
BE
RO
BG
EU2
Q2. Are you aware of the existence of the following security problems related to internet usage?
Base: all respondents
% of ‘Yes’, by country
2. Confidence in Internet transactions
While most Internet users in the EU are confident that transactions over the Internet are safe (12%
believe that these are completely safe, and 46% assume they are rather safe, totalling 58%), there is a
significant minority of users who do not have confidence in these transactions. One out of ten
European Internet users has the opinion that such transactions are not safe at all, and 19% believe that
these are not really safe – and if we add those who can’t tell whether such transactions are safe or not
(9%), almost four in ten users (39%) have significant doubts regarding Internet safety in this regard.
Four percent of respondents indicated that the safety of the transaction depends on its nature (‘it
depends on the circumstances’).
Perceived safeness when carrying out
transactions over the Internet
9
11
Not safe at all
4
Not really safe
12
19
Rather safe
Completely safe
It depends on the
circumstances
DK/NA
46
Q3. How safe do you feel when you carry out transactions over the internet?
Base: all respondents
% EU27
Confidence in Internet transactions is the highest in the Nordic Member States (Finland: 84% consider
them rather or completely safe; Denmark: 82%; Sweden: 78%), but the vast majority of Dutch (78% -
also with the highest proportion of ‘completely safe’ replies: 37%), British (76%), Irish (70%) and
Estonian (69%) users also trust the safety of Internet transactions.
page
12
Flash EB No 250 – Confidence in the Information Society
Analytical Report
Confidence in internet transactions
Completely safe
Rather safe
Not really safe
Not safe at all
It depends on the circumstances
DK/NA
100
2
3
8
3
8
8
5
5
5
6
4
8
6
3
7
5
2
5
8
8
2
13
5
2
4
2
7
2
14
9
3
4
7
3
8 16
2
12
5
2
3
10 5
4
5
6
2
5
4
8
4
3
24
12 11 28
5
7
8
11
9
14 12 13
32
18
10 11
4
17
8
6
22
75
23
18
41
30
50
12
7
7
3
26
10 19 27 21
2 20 23
24 4
10
26 27 31 7
12
54
41
11
2
50
61
13 27
56
56
16 13 19 19 23 6
57 55 49
3 27
53 43 46
7
51 46 46 43 44
34 33
48
38
25
38 28 31 33 30
19
31
13
30
37
21 22
20
7
13 14 15 11 17 12
17 16
15
7
11 11 13 10
0
3
10 5 12 10 8 9 4
10
FI
DK
SE
NL
UK
IE
EE
LV
PL
BE
27
LU
FR
CZ
AT
PT
DE
HU
LT
SI
IT
CY
RO
EL
MT
ES
SK
BG
EU
Q3. How safe do you feel when you carry out transactions over the internet?
Base: all respondents, due to technical reasons, as a result of rounding, the sums in charts in a few case do not add up to 100
% by country
On the other hand, confidence levels are lowest in Bulgaria (17%) and Slovakia (34%); in Slovakia
people are most likely not to provide their opinion, stating that they ‘do not know’ how safe
transactions over the Internet are (55%). The situation is similar in Bulgaria (don’t know: 41%), but
Bulgaria is among the three Member States where people with low or no confidence (40% in total)
outnumber those users who fundamentally trust (as indicated, 17%) transactions over the Internet.
Results are similar as well in Spain (trust: 35%, do not trust 49%) and in Greece (trust: 41%, do not
trust 49%).
Daily Internet users are significantly more confident than those who use the web less regularly (62%
vs. 48%), and the gap is similar between those with a degree and those with only a basic education
(64% vs. 48% respectively). Men are more confident about the safety of online transactions (62%)
than women (55%), while there is no clear pattern among the various age groups or the segments
defined by level urbanisation. (See Annex Table 3.b.)
page
13
Analytical Report
Flash EB No 250 – Confidence in the Information Society
3. Security precautions
Almost every Internet user in the European Union applies some preventive technology aimed at
safeguarding computers connected to the Internet and the data they store: 96% confirm using some
antivirus, antispam or firewall application. More than a third (35%) indicated that they also use further
solutions to increase their safety while browsing the Internet.
Precautions aimed to increase internet security
True / it applies
False / it does not apply
Not applicable/don't use the application
DK/NA
SECURITY TECHNOLOGIES
1
I use products like antivirus, antispam or firewall
96
3 1
I use alternative security techniques
35
53
4 7
RISK AVERSION
I avoid as much as possible giving out my personal data on
1
86
13 1
the internet
I don't engage in peer-to-peer file sharing with unknown
1
81
17
1
persons
I don't carry out financial transactions over the internet
42
56
21
BARRIERS TO USE SECURITY MEASURES
I don't implement security measures to protect my
10
86
3
computer because I don't feel threatened
2
I don't protect my computer because products like
7
89
3
antivirus, antispam are too expensive
1
I don't protect my computer because security is too difficult
6
89
3
to implement and use
2
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet. For each of
these please tell me which applies to you and which does not?
Base: all respondents, due to technical reasons, as a result of rounding, the sums in charts in a few case do not add up to 100
% EU27
Risk avoiding behaviour is also widely reported; users rarely give out personal data on the Internet
(avoids as much as possible: 86%), and they equally rarely engage in peer-to-peer file transfers with
people they don’t know (81% indicate refraining from such activity ). Only a minority (however a
very significant minority) do not carry out financial transactions over the Internet (42%).
Looking at the barriers to risk aversive behaviour, only a small minority of European Internet users
agree that they do not implement (some) security measures because they do not feel threatened (10%),
because these are too expensive (7%) or because they don’t know how to use them (6%).
page
14
Flash EB No 250 – Confidence in the Information Society
Analytical Report
Curiously, those using standard security technologies are more likely to detect (79%) at least one of
the security breaches tested (see section 5. for the types considered) than those who do not apply such
techniques (58%). Obviously, those who apply e.g. anti-virus software are more likely to notice virus-
related problems (e.g. when installing the software or when updating it) compared to those who do
not. In other words, the above results suggest that the application of security technologies do not only
prevent security breaches, but they also help detecting those that would have otherwise gone
unnoticed.
Similarly, reports of risk aversive behaviour is positively correlated to experiences of security
problems, indicating that adopting such behaviours are not always a priori preventive measures, but
also responses to problems that might have occurred earlier. There is no such difference in the case of
alternative techniques, security breaches are reported with approximately the same level of likelihood
among those who do (79%) and do not apply them (77%).
Protective measures and experienced safety problems (EU27)
%
experienced
security
problems
Use products like antivirus, antispam or firewall
yes
79
no
58
Use alternative security techniques
yes
79
no
77
No financial transactions
yes
75
no
80
Avoid as much as possible giving out personal data
yes
77
no
81
No peer-to-peer file sharing with unknown persons
yes
77
no
80
In the following sections we detail each safety-related measure by Member State, and by user
characteristics.
page
15
Analytical Report
Flash EB No 250 – Confidence in the Information Society
3.1 Security technologies
Standard security technologies (such as antivirus software, spam filters and firewalls) are standard
accessories on home computers throughout the European Union, most users report that their systems
are equipped with at least one of these. Ninety percent or more of users confirmed this to be the case
in 24 Member States, the most affirmative responses came from Portugal and France (98% both). The
three Member States with less than 90% confirming the usage of standard security technologies are
Bulgaria (89%), Romania (85%) and Cyprus (82%).
Daily users of the Internet are somewhat more likely to report using such standard Internet security
technologies (97%) compared to those who are less regularly online (93%), and those with degrees are
also more likely to apply such technologies (97%) than those with medium (95%) or basic (91%)
education.
Standard security technologies
I use products like antivirus, antispam or firewall
98 98 97 97 97 97 97 96 96 95 95 95
100
95 95 95 94 94 93 93 93 93 92 92 91 90 89 85 82
75
50
25
0
PT
FR
UK
NL
FI
MT
AT
IT
27
DE
ES
LU
SI
CZ
BE
DK
SE
HU
EL
LT
IE
EE
LV
PL
SK
BG
RO
CY
EU
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet.
For each of these please tell me which applies to you and which does not?
Base: all respondents
% of ‘True / it applies’, by country
Alternative security technologies
I use alternative security techniques
100
75
51 50 46 46
50
44 44 42 40 40 39 36 36 35 35 35 35 34 34 33 32 32 29 28 27 21 21
25
20 19
0
7
PT
CY
SI
MT
ES
UK
PL
BG
CZ
LU
DE
BE
2
NL
SE
DK
SK
IE
HU
RO
EL
LV
EE
IT
LT
FR
AT
FI
EU
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet.
For each of these please tell me which applies to you and which does not?
Base: all respondents
% of ‘True / it applies’, by country
Various alternative or complementary security techniques and technologies are available for the more
security-conscious user to improve the security of computer systems and online communication / data
exchange (examples of such techniques: not using mainstream software products, disconnecting WiFi
when not behind the computer, avoiding giving personal data, refusing financial transaction on service
page
16
Flash EB No 250 – Confidence in the Information Society
Analytical Report
that do not offer a hardware security, setting the browser parameters to values ensuring security, avoid
to browse potentially dangerous website,…). Such techniques are used by about half of the users in
Portugal (51%) and Cyprus (50%). On the other hand, these are significantly less popular in Finland
(19%), Austria (20%), France and Lithuania (21% both).
The difference between daily and less regular users is even more pronounced in this aspect (38% of
the former group uses alternative security technologies versus 28% of the latter). Those between 15
and 24 years of age and those with a higher education are also more likely than the average to use such
solutions (38% and 37%, respectively), see Annex Table 4.b.
3.2 Risk avoidance
The most widespread risk aversive behaviour detected by this survey is that users are reluctant to give
out personal information in Internet-based transactions. Ninety-three per cent of Greek and 92% of
Bulgarian and Slovenian Internet users confirmed that they avoid giving out their personal data via the
Internet as much as possible, and this view is shared by at least 80% of the users in 23 other Member
States as well. Relatively speaking, Czech users were the least intent on keeping their personal data
private in Internet transactions, but even in the Czech Republic, 75% confirmed that they are reluctant
to transmit personal data in online transactions.
There are only very slight variations in this aspect if one looks at the various user groups. Especially
the eldest group (89%) and those who are not online every day (90%) avoid transmitting personal data
in online communication. (Annex Table 4.b)
Risk avoidance: Reluctance to give out personal information
I avoid as much as possible giving out my personal data on the internet (ex. name, age, credit card
number, email address, religion)
100
93 92 92 91 91 90 90 90 89 88 88 86 86 86 86 85 85 85 84 84 84 83 83 83 82 81 81 75
75
50
25
0
EL
BG
SI
FI
SE
CY
FR
PL
PT
DE
27
IE
HU
SK
LV
LU
UK
EE
IT
ES
MT
RO
LT
AT
BE
DK
NL
CZ
EU
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet.
For each of these please tell me which applies to you and which does not?
Base: all respondents
% of ‘True / it applies’, by country
Peer-to-peer file exchanges with strangers are avoided, once again, by most EU Internet users; a large
number of them confirm that they do not engage in such activities. This is especially the case in
Estonia (92%), Finland, Slovenia and Greece (90% each), see graph on the next page. On the other
hand, only 53% of Danish Internet users indicated that they do not share files with strangers.
Age plays an important role in determining if one does or does not engage in file sharing: 86% of
those aged 55 or above state that they do not exchange files with strangers, while this proportion is
74% among the 15-24 year olds. (Annex Table 4.b)
page
17
Analytical Report
Flash EB No 250 – Confidence in the Information Society
Risk avoidance: No P2P file exchange
I don’t engage in peer-to-peer file sharing with unknown persons
100
92 90 90 90 89 89 89 88 88 85 84 83 83 82 81 81 78 77 77 76 76 75 73
75
70 70 69 69
53
50
25
0
EE
EL
FI
SI
BG
UK
27
HU
CY
DE
PL
IT
LV
PT
MT
AT
IE
LU
SE
FR
LT
BE
SK
RO
CZ
ES
NL
DK
EU
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet.
For each of these please tell me which applies to you and which does not?
Base: all respondents
% of ‘True / it applies’, by country
As a precaution, especially Bulgarian, Greek (66% both) and Hungarian (65%) Internet users do not
perform financial transactions online, but also in Romania (58%), Spain (56%) and Italy (55%) the
majority of Internet users avoid paying or dealing with their bank in an online environment. On the
other hand, only one in ten users in Finland indicated that they do not carry out online financial
transactions (11%), and those in Estonia (26%), UK (27%), Sweden and the Czech Republic (30%
both) are also significantly less likely than the average EU Internet user to report that they do not use
the Internet for bank transactions or payments.
In this aspect various user groups follow clearly different conduct: those who use the Internet on a
daily basis are much more likely to carry out financial transactions online (do not: 38%) compared to
those who use the web less regularly; in the latter group 52% indicated that they do not pay anything
online. There is a significant gap between the two genders, as well: men are more likely to pay or bank
online (39% replied that they don’t), while the ratio of those not engaging in such transactions is 44%
among women. Lastly, young (15-24: 47%) and non-working users (46%) were also more likely than
most to claim that they do not carry out online transactions, probably partly due to security concerns as
well. (Annex Table 4.b)
Risk avoidance: No online financial transactions
I do not carry out financial transactions over the internet (ex. e-commerce, e-banking)
100
75
66 66 65 57 56 55 50 50 48 47
50
42 42 42 41 40 38 38 38 38 36 35 33 32 30 30 27 26
25
11
0
BG
EL
27
HU
RO
ES
IT
SI
CY
DE
SK
LT
PT
FR
AT
LV
IE
BE
MT
LU
PL
DK
NL
CZ
SE
UK
EE
FI
EU
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet.
For each of these please tell me which applies to you and which does not?
Base: all respondents
% of ‘True / it applies’, by country
page
18
Flash EB No 250 – Confidence in the Information Society
Analytical Report
3.3 Barriers to security measures
The survey investigated three typical barriers that explain why users do not apply security
technologies to their systems: lack of alertness about the threats online data exchange might involve,
cost issues and the difficulty of using sometimes cumbersome security technologies For example, an
anti-virus software or firewall applications can sometimes slow down the users’ PC: one may decide
not to use it just to avoid this cumbersome feature. None of these issues prevent a large number of
Internet users from using the security technologies discussed above; there are however noteworthy
variations by country and by user segments.
The most widespread barrier, lack of alertness, prevents a relatively large number of users from
applying (more) security technologies in Bulgaria (32%) and Spain (24%). On the other hand, an
assumed safety that prevents users from taking protective measures is much less widespread in
Finland, Austria (3% both), Lithuania (4%) and France (5%) compared to the EU average. Between
the different age groups, the youngest users are also the most likely to share this lack of concern, but
even among them, only 13% claim that they feel unthreatened. (Annex Table 4.b)
Barriers to use security measures: Lack of alertness
I do not implement security measures to protect my computer because I do not feel threatened
100
75
50
32 24
25
18 16 14 14 14 14 13 13 11 10 10 10 10 9 9 9 9 8 8 7 7 6 5 4 3 3
0
7
RO
ES
SE
DK
CY
EL
BG
IE
2
HU
PL
LU
PT
SK
BE
LV
UK
SI
DE
NL
MT
CZ
IT
EE
FR
LT
AT
FI
EU
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet.
For each of these please tell me which applies to you and which does not?
Base: all respondents
% of ‘True / it applies’, by country
Perceived costs associated with proper security technologies are cited most often as a reason for not
installing said technologies in Romania and Spain (23% both). Perceptions of prohibitive costs are on
the other hand practically nonexistent in Finland (1%), Austria and Malta (2% both). Cost concerns
are most common among manual workers, with 11% indicating that security solutions are too
expensive. (Annex Table 4.b)
page
19
Analytical Report
Flash EB No 250 – Confidence in the Information Society
Barriers to use security measures: Cost
I do not protect my computer because products like antivirus or antispam are too expensive
100
75
50
23 23
25
12 11 10 10 10 9 9 8 7 7 7 6 6 6 6 6 5 4 4 4 3 3 3 2 2 1
0
7
RO
ES
EL
IE
BG
SK
PL
HU
PT
SE
DK
CY
BE
CZ
LV
SI
UK
IT
FR
EE
DE
LT
NL
LU
MT
AT
FI
EU2
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet.
For each of these please tell me which applies to you and which does not?
Base: all respondents
% of ‘True / it applies’, by country
About a fifth of Romanian and Spanish Internet users in particular think that they do not have
sufficient technical IT skills to implement security solutions on their systems (23% and 20%,
respectively), and this concern is also significantly above the EU average in Ireland (15%), Greece
(12%) and Slovakia (10%). On the other hand, this is again a non-issue in Finland (1%), Austria,
Lithuania and Malta (2% each). Those with only a primary education (8%), and users who browse the
Internet less frequently (e.g. not on a daily basis: 8%) were most likely to indicate that security
solutions are too difficult to install and use, but generally, the range of variance is very low across all
segments investigated (4%-8%).
Barriers to use security measures: Skills
I do not protect my computer because security is too difficult to implement and use
100
75
50
23
25
20 15 12 10 9 9 9 8 7 7 6 6 6 5 5 5 5 4 4 4 3 3 3 2 2 2 1
0
RO
ES
IE
EL
SK
BG
SE
PL
CY
LV
DK
27
HU
LU
BE
CZ
SI
PT
IT
UK
DE
FR
EE
NL
LT
MT
AT
FI
EU
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the internet.
For each of these please tell me which applies to you and which does not?
Base: all respondents
% of ‘True / it applies’, by country
page
20
Flash EB No 250 – Confidence in the Information Society
Analytical Report
4. Security problems faced
Despite the reported efforts users make in order to protect the privacy of their online communications
and the integrity of their systems, many of them have encountered security problems in the past. Over
the past five years, 65% of EU Internet users reported being the victim of excessive spamming and
46% detected viruses on their computers.
Security problems detected
I received many unsolicited emails ('Spam')
65
A malicious software (computer virus) damaged my
46
files or my computer
My children accessed inappropriate web-sites, they
5
connected with potentially dangerous persons
My privacy was violated because somebody abused my
5
personal information sent by me over the internet
My computer was remotely "possessed" by ill
3
intentioned persons ("botnet")
I was fooled by fraudsters and gave them personal data
3
("Phishing")
Q5. Did you have any of the following security problems using the internet in the last five years?
Base: all respondents
% of ‘Yes’, EU27
Reports of other security problems are relatively low, but due to the nature of these problems many of
them might go unnoticed. Five per cent of users indicated that their privacy was violated by the abuse
of personal information that they sent online, 5% are aware of their children having accessed
inappropriate content or having come into contact with potentially dangerous persons. Three per cent
are aware of their computer having become part of a botnet, and the same proportion indicated that
they unintentionally provided fraudsters with their personal data.
4.1 Infected with viruses
Almost two thirds of all Internet users in Bulgaria, Malta, Romania and Hungary (65% each) reported
that they have detected a virus infection on their computer during the past 5 years.
Virus infection
A malicious software (computer virus) damaged my files or my computer (ex. My computer was not
working anymore or was working very slowly, I was always re-directed to a website I did not choose)
100
75
65 65 65 65 59 58 56 56 55 55 53 53 50 49 48 46
50
44 44 44 43 43 43 42 42 42 39 39 38
25
0
7
BG
RO
MT
2
HU
EE
IT
ES
LV
EL
LT
CZ
PT
SK
BE
SI
CY
FR
DK
PL
NL
LU
UK
FI
DE
AT
IE
SE
EU
Q5. Did you have any of the following security problems using the internet in the last five years?
Base: all respondents
% of ‘Yes’, by country
page
21
Analytical Report
Flash EB No 250 – Confidence in the Information Society
Even in those countries where relatively few users reported detected virus infections, this problem
affected a significant number of users: 38% in Sweden, 39% in Ireland and Austria.
Intensive usage implies more infections: those who are online every day are much more likely to
report such incidents (50%) compared to those who use the Internet less regularly (39%).
There is a clear link between age and the likelihood of virus infection; the older the user is the less
likely he or she is to indicate the detection of a virus (59% of those 15-24 years old had detected a
virus, while this proportion was only 33% among users 55 and older). Men were also more likely than
women to indicate that their computer had at some point become contaminated (50% vs. 43%,
respectively). (Annex Table 5.b)
4.2 Victims of phishing
Perhaps reflecting significant underreporting (due to lack of awareness as well as the general
reluctance to admit that one has been fooled), the proportion of users who have been victims of
phishing remains below 10% in each Member State, ranging from 8% in Malta and 7% in Ireland to
only 1% in France, Sweden and Slovakia.
This phenomenon is equally rare in every user segment: affirmative responses were given in the range
of 2-4%. (Annex Table 5.b)
Victims of phishing
I was fooled by fraudsters and gave them personal data ("Phishing")
100
75
50
25
8
7
5
4
4
4
4
4
4
3
3
3
3
3
3
2
2
2
2
2
2
2
2
2
2
1
1
1
0
7
MT
IE
RO
BG
DE
HU
BE
NL
UK
DK
SI
PT
CZ
EE
AT
CY
LU
IT
LV
LT
PL
FI
EL
ES
SK
SE
FR
EU2
Q5. Did you have any of the following security problems using the internet in the last five years?
Base: all respondents
% of ‘Yes’, by country
4.3 Abuse of personal information
Incidents of privacy violation were most reported by Romanian, Italian, Irish and Maltese Internet
users – 8% in each country indicated that it came to their attention that personal data they transmitted
over the Internet was abused or leaked at some point in the past five years. On the other hand, only 1%
of the Swedish and 2% of the Slovakian, Latvian and Danish users reported any such problems.
Again, this experience is quite rare in every user segment, and only slight trends can be seen: men are
slightly more likely to fell victim to such activity, as are metropolitan users, and those who use the
Internet intensively (every day). Self-employed Internet users were the most likely of all segments to
report that their privacy was violated (8%) and those above 55 were least likely to confirm such an
experience (3%).
page
22
Flash EB No 250 – Confidence in the Information Society
Analytical Report
Personal data abused
My privacy was violated because somebody abused my personal information sent by me over the
internet (ex. ID, credit card number or other personal information I did not want to be disclosed) or my
data were unduly disclosed by a third party
100
75
50
25
8
8
8
8
6
6
5
5
5
5
5
5
5
5
5
4
4
4
4
4
3
3
3
3
2
2
2
1
0
7
RO
IT
IE
MT
EL
UK
BE
NL
LT
2
HU
BG
EE
AT
PT
CZ
DE
ES
PL
CY
FR
FI
SI
LU
DK
LV
SK
SE
EU
Q5. Did you have any of the following security problems using the internet in the last five years?
Base: all respondents
% of ‘Yes’, by country
4.4 Recipients of excessive spam
Excessive spamming affects the majority of Internet users in most Member States. Receiving large
amounts of unsolicited emails was most often reported in Portugal (83%), France (77%) and Malta
(72%). Countries where less than half of the users complain about this problem are Slovakia (31%),
Cyprus (46%) and Finland (47%).
Spam emails are received by most users in all segments, however some segments stand out: those who
use the Internet on a daily basis (69% reported excessive spam vs. ‘only’ 56% of the less regular
users), the self-employed (74%, vs. e.g. 61% of those who do not work) and men (68% vs., 63%
among women).
There is a clear relation between educational attainment and the amount of spam received: 71% of
those who completed higher education, 61% with a secondary school diploma and 57% with a primary
education indicated the reception of large amounts of spam. The tendency is similar regarding levels
of urbanisation: metropolitan users are more likely to be spammed (69%) than are those in smaller
cities (65%) or villages (64%).
Excessive spam
I received many unsolicited emails ('Spam')
100
83 77 72
75
70 68 68 67 67 66 65 65 65 64 63 63 62 62 61 59 59 58 54 54 51 50 47 46
50
31
25
0
PT
FR
MT
EE
27
HU
UK
AT
NL
BE
ES
DE
IT
CZ
EL
PL
LU
SI
DK
LT
RO
LV
IE
BG
SE
FI
CY
SK
EU
Q5. Did you have any of the following security problems using the internet in the last five years?
Base: all respondents
% of ‘Yes’, by country
page
23
Analytical Report
Flash EB No 250 – Confidence in the Information Society
4.5 Experienced security issues related to children
While Finns are reportedly better protected in most regards, the reports of security problems regarding
children’s use of the Internet come most often from this country: 12% among those who did not
dismiss the question as not applicable for their household because they have no children, confirmed
that they have experienced a problem in this regard during the past five years. Such reports are
relatively more frequent than elsewhere in Estonia (10%), Belgium, the Netherlands, Hungary, Latvia
and Lithuania (9% each) as well. On the other hand, this is a rare complaint in Slovakia and Slovenia
(2%) as well as in Portugal, Sweden and Italy (3% each).
Experience of security issues related to children's internet use
My children accessed inappropriate web-sites, they connected with potentially dangerous persons
100.0
75.0
50.0
25.0
12 10 9 9 9 9 9 8 8 8 7 7 7 6 5 5 5 5 5 5 4 4 4 3 3 3 2 2
0.0
FI
EE
BE
HU
LV
NL
LT
MT
CY
IE
RO
BG
DK
CZ
PL
UK
AT
27
FR
EL
LU
DE
ES
IT
SE
PT
SI
SK
EU
Q5. Did you have any of the following security problems using the internet in the last five years?
Base: all respondents
% of ‘Yes’, by country
Such security problems were most commonly reported by those aged 40 to 54 years (8%), manual
workers (8%), and those with the lowest levels of education (7%). Also, daily users were more likely
than others (6% vs. 3%, respectively) to indicate that their kids came into contact with unsafe content
or persons.
4.6 Becoming part of botnets
Botnet activity
My computer was remotely "possessed" by ill intentioned persons ("botnet")
100
75
50
25
11 10 7 6 6 6 6 5 5 4 4 4 4 4 4 3 3 3 3 2 2 2 2 2 2 1 1 1
0
MT
BE
RO
PT
BG
ES
IE
DK
LT
EE
EL
FI
FR
IT
UK
27
HU
LV
SI
CZ
NL
SE
CY
AT
PL
SK
DE
LU
EU
Q5. Did you have any of the following security problems using the internet in the last five years?
Base: all respondents
% of ‘Yes’, by country
According to estimates approximately 25% of the computers that access the Internet are “zombies”
containing code that potentially triggers their involvement in a botnet. Not many users in the EU
page
24
Flash EB No 250 – Confidence in the Information Society
Analytical Report
detect the signs of this. Even in Malta, only 11% of users reported that they noticed such activity or
code on their computers, and this figure was by far the highest in the EU, with the proportion of
reports in most Member States remaining below 5%. The fewest reports were detected in
Luxembourg, Germany and Slovakia, where only 1% confirmed that such a problem came to their
attention in the past five years.
Looking at user segments, patterns are inconclusive: in each category only a very small minority (2-
4%) noticed that their computer was hacked to become part of a botnet (Annex Table 5.b).
5. Damages suffered
While this survey did not attempt to explore and estimate the volume of financial and other losses
related to online security, respondents reporting security problems from the past five years (see section
4.) were asked to say whether or not they suffered damages typically related to Internet use.
The most often mentioned consequence of Internet security problems was the loss of time, specifically
because of virus infections (slow systems, time needed to reinstall, etc.). Two thirds of those in the EU
who experienced security problems indicated this. Loss of non-personal data (e.g. damaged files, etc.)
was the second most frequently reported result of Internet security problems, although at a
significantly lower rate; 18% in the EU27 level claimed such damage. The proportion of those who
reported direct financial losses (e.g. money stolen, computer repair, loss of valuable data) is similar:
such issues were reported by 16% of all Internet users in the EU who encountered some security
problem over the past five years.
Damages suffered
Loss of time (ex. I had to reset my computer, my
67
computer performed slowly due to a virus)
Loss of other data
18
Financial losses (ex. money robbed, computer repair
16
costs, loss of valuable data)
Loss of personal data (ex. credit card number,
8
confidential information about me)
Embarrassment and/or humiliation
8
Q6. What damages have you experience?
Base: who had any security problem in the last five years
% of ‘Experienced’, EU27
Internet users are, however, much less likely to indicate that they suffered a loss of personal data
(credit card number, etc. - 8%) and they are similarly unlikely to have suffered psychological damage
related to Internet security problems (e.g. embarrassment or humiliation, 8%)
page
25
Analytical Report
Flash EB No 250 – Confidence in the Information Society
5.1 Reports of various damages by country and user segments
Internet security problems most often caused time loss for those who experienced them. In 11 Member
States this was reported by at least 75% of those who fell victim to at least one of the security
problems considered in this survey. Time loss was most widely reported by Romanian (81%), Slovak
(80%), Slovene (78%), Greek and Italian respondents (77% both). On the other hand, significantly
fewer users in Austria (56%), the Netherlands (58%) and Denmark (61%) reported this issue in
relation to security problems they experienced.
Looking at various user segments (Annex Table 6.b), daily users (69%), men (69%), non-metropolitan
users (68%), and especially those aged 15-24 years (76%) emerge as those with the most reports of
time loss related to Internet security problems.
Experienced damages: Loss of time
(ex. I had to reset my computer, my computer performed slowly due to a virus)
100
81 80 78 77 77 76 76 76 76 75 75 74 73
75
70 70 69 68 68 68 67 67 63 63 62 62 61 58 56
50
25
0
RO
SK
SI
EL
IT
IE
FI
LV
27
HU
CZ
ES
LT
MT
BG
CY
PT
EE
UK
PL
BE
SE
FR
DE
LU
DK
NL
AT
EU
Experienced damages: Financial losses
(ex. money robbed, computer repair costs, loss of valuable data)
100
75
50
30 30 28 27 25 25 25 22 21
25
20 20 19 19 18 18 17 17 17 16 16 15 15 14 13 13 11 10 9
0
SI
7
MT
BG
EE
LV
LT
HU
EL
IT
UK
CY
IE
PL
AT
PT
BE
CZ
LU
SK
FR
FI
RO
DE
DK
NL
ES
SE
EU2
Q6. What damages have you experience?
Base: who had any security problem in the last five years
% of ‘Experienced’, by country
Financial losses related to Internet security breaches were most often reported in Malta, Bulgaria
(30% both), Estonia (28%) and Latvia (27%). Security problems were much less likely to result in
financial consequences in Sweden (9%), Spain (10%) and the Netherlands (11%).
Financial losses were more frequently reported by women (18%) than men (14%), and a significant
number of 40-54 year olds, rural respondents, and self-employed users (19% each) suffered direct
financial damages as a result of Internet security problems.
page
26
Flash EB No 250 – Confidence in the Information Society
Analytical Report
Bulgarian users were most likely to confirm that Internet security problems embarrassed or even
humiliated them (23%), followed by the French (22%), Polish (16%) and Latvian users (15%). Such
adverse psychological consequences are very infrequent in most Member States; in 15 countries the
proportion of those confirming psychological damages remained at or below 5%. Barely anyone in
Austria, Slovakia and Cyprus reported this result (1% in each country).
User groups do not differ significantly as far as adverse psychological effects resulting from Internet
security problems are concerned: the rate varies between 6-8%, with the youngest user group standing
out: one in ten of them (15-24: 10%) reported embarrassment or humiliation as a result of an Internet
security problem.
Experienced damages: Psychological
Embarrassment and/or humiliation
100
75
50
23 22
25
16 15 13 12 12 11 9 9 8 8 6 5 5 4 4 4 4 3 3 3 3 2 2 1 1 1
0
7
BG
FR
PL
LV
LT
EE
EL
BE
RO
MT
2
IE
IT
PT
UK
DE
DK
ES
HU
CZ
FI
SI
SE
NL
LU
CY
SK
AT
EU
Experienced damages: Loss of personal data
(ex. credit card number, confidential information about me)
100
75
50
25
20 19 15 13 12 12 10 9 9 9 8 8 8 7 7 7 7 7 5 5 5 5 5 5 4 4 2 1
0
BG
RO
MT
IE
IT
FR
PT
ES
DK
EL
27
BE
AT
CZ
DE
UK
EE
LV
NL
LT
HU
PL
LU
CY
SI
FI
SK
SE
EU
Q6. What damages have you experience?
Base: who had any security problem in the last five years
% of ‘Experienced’, by country
Once again, it is the Bulgarian users (also the most likely of all EU countries to indicate that their
computers were infected with viruses, see section 5.) who were most likely to report that any security
problems they experienced resulted in a loss of personal data (20%). This outcome was also
relatively frequently mentioned in Romania (19%) and Malta (15%). On the other hand, only 1% of
the Swedish and 2% of the Slovakian users (who experienced a security problem) reported such
consequences.
Loss of personal data is least likely to be reported by those Internet users who are aged 55 or older
(3%) and the youngest segment is once again is the most likely report such damages (15-24: 11%). In
other user segments the likelihood of personal data loss is more or less equal, ranging from 6% to 9%.
page
27
Analytical Report
Flash EB No 250 – Confidence in the Information Society
Loss of non-personal data due to security problems was reported most often in Bulgaria (31%),
Romania (30%), Italy (25%) and France (23%). Even in those countries where such damages were
more rare compared to the EU average, this was a relatively frequent consequence of security issues:
at the bottom end of the ranking, 11% of those affected confirmed data loss in Luxembourg, 12% in
Finland and 13% in the Netherlands and Slovakia.
The pattern prevails: Loss of personal data is least reported by those Internet users who are aged 55 or
older (11%) and the youngest segment is the most likely report such damages (15-24 years of age:
26%). Those with only a primary education were also more likely to lose data (22%) compared to
more highly educated respondents. Data loss affects those who use the Internet on a daily basis more
(20%) than it does those who use it less frequently (14%).
Experienced damages: Data loss
Loss of other data
100
75
50
31 30 25 23 22 21 21
25
20 20 19 19 19 18 18 18 17 17 17 17 16 16 16 14 14 13 13 12 11
0
7
BG
RO
IT
FR
DK
AT
PL
EL
MT
IE
SE
BE
2
PT
LT
SI
CY
EE
UK
DE
ES
LV
HU
CZ
NL
SK
FI
LU
EU
Q6. What damages have you experience?
Base: who had any security problem in the last five years
% of ‘Experienced’, by country
5.2 Security problems and inflicted damages
In order to clarify the harmfulness of various security breaches, reports of any actual damage were
analysed by the type of security problems experienced. Although a single user might have experienced
more than one security problem during the past five years and therefore misreported damages as
resulting from a problem other than that from which they came, this analysis helps us understand the
relative hazard levels associated with each of the security problems investigated in this survey.
Security problems and inflicted damages
(%, EU-27)
ANY
DAMAGES
SECURITY PROBLEMS:
yes
no
Virus infection
44
56
Phishing 51
49
Abuse of personal data
54
46
Spam 30
70
Children 53
47
Botnet 64
36
As the table above shows, those who received spam are the least likely to mention that they suffered
any damage related to Internet security issues (30%), and the majority of those who indicated a virus
page
28
Flash EB No 250 – Confidence in the Information Society
Analytical Report
infection did not actually suffer damages at all (56%). The most potent hazards are related to the
instances of botnet activity: 64% of the EU Internet users who noticed such a security breach
confirmed that they suffered some damage related to Internet security issues. Also, the majority of
those who were victims of phishing (51%), abuse of personal data (54%), or reported security
problems related to children using the Internet (53%) confirm that they suffered damages related to
online security issues.
6. Responsibility for Internet security
EU Internet users recognize a shared responsibility for protecting users from security problems, with
the users themselves taking the lead: three quarters of Internet users believe that they personally are
responsible for ensuring their protection from Internet-related security hazards (75%). However, the
majority of users also believe that their Internet service providers (52%) as well as those organisations
that provide online services (51%) are also accountable for security breaches in online transactions.
Taking responsibility for ensuring security on the Internet
Me, personally
75
My internet access provider
52
The organisation providing an on-line service
51
My equipment and software suppliers
40
The public authorities
31
DK/NA
4
Q7. Who, in your opinion, is responsible for ensuring your security on the internet?
Base: all respondents
% of ‘Mentioned’, EU27
Four in ten users (40%) feel that responsibility also lies with the hardware and software providers to
create secure systems that resist malicious attempts to target users or their computers. Lastly, 31% feel
that public authorities also have a responsibility in protecting people from problems related to online
security.
In 21 Member States, the three most frequently given replies were those which are the most frequent at
the EU-27 level as well, and are also generally given in the same order.
Equipment and software providers are in the top three in only six Member States, ranked ahead of
providers offering online services in each: The Czech Republic, France, Ireland, Lithuania, Romania
and Slovakia. Public authorities are rated as the most responsible in Italy and the second most in
Spain. (See Annex Table 7.a for more details.)
In every user group we see the pattern reflecting the EU average; respondents place themselves in the
first place, they then hold Internet service providers and online service providers accountable for
ensuring the safety of online activities, more or less equally.
page
29
Analytical Report
Flash EB No 250 – Confidence in the Information Society
The situation is broadly speaking the same in each Member State: individual responsibility is regarded
as the most important in the vast majority of the country-level internet user communities. However,
there is a spectacular difference between Sweden where 49% believe that is primarily their own
responsibility to keep their online activities secured, and Italy where only 22% accept such individual
responsibility, with the most responses pointing at the role of state authorities in this regard (24%).
Taking responsibility for ensuring security on the Internet
Me, personally
My equipment and software suppliers
My internet access provider
The public authorities
The organisation providing an on-line service
100
16 17 95 16 14 18 17 16 18 19 15 20 24 17 18 19 13 17 21 18 21 23 18
17
25
21 24 20
8 10
8
9
3
5
8
12
9
75
23
11
8
9 10
13
9 12
9
17
10
13
20 13
15
10
13
13
17
12
21 19
23 25
24
23
21 23 22 23
26
11
18 25 25 22 31 21 25 20 21
50
11 18
19
10 14
20 18 22 20
10 18 17 16 15 19 13 14
22
11 15 15
21
12
13 16 16 15 17 14 18 17 17
25
49
12
45 45 43 43 39 38 38 36 35 35 35 34 34 33 33 33 32 32 30 30 30 29 29 28 27 26 22
0
SE
CY
RO
DK
IE
MT
CZ
SK
SI
BE
LT
LV
FI
NL
PL
PT
BG
FR
AT
EL
27
DE
HU
LU
ES
EE
UK
IT
EU
Q7. Who, in your opinion, is responsible for ensuring your security on the internet?
Base: all responses, due to technical reasons, as a result of rounding, the sums in charts in a few case do not add up to 100
% by country
It is the role of public authorities where opinions across Member States differed the most: least likely
are the Czech (3%), Slovaks and Romanians (both 5%) to expect their authorities to assume
responsibility for ensuring their security in online transactions, while such a role is most expected by
internet users – besides the aforementioned Italy – in Spain (20%). Service providers are most
frequently expected to protect users’ online security in Portugal (31%) while reliance on equipment
and software suppliers is most widespread in France (21%).
While there is no variation in the rankings, there are some differences in the level of affirmative
answers by user groups. Those between 15 and 24 years were more likely than any other age group to
lack an opinion, and the least likely to indicate each of the answer categories provided. However,
those with higher levels of education are the most likely to indicate responsibility for each agent, and
least likely to claim that they have no opinion.
Personal responsibility was confirmed especially in the segment that completed higher education
(81%), while only 68% of those with only a primary education felt that they were responsible for
ensuring their security on the Internet. Men were more likely than women (77% vs. 74%) to assume
personal responsibility, as were white and blue collar employees (77% both) compared to the self-
employed (74%) and non-working Internet users (72%).
Public authorities are in turn more likely to be held responsible by women (33% vs. 30% of men), by
the self-employed (32%), by white-collar employees (33%), and by those aged 40-54 (35%). Also,
metropolitan users are more likely to call for public protection with regard to Internet security (33%
vs. 29% in rural areas.)
page
30
Flash EB No 250 – Confidence in the Information Society
Analytical Report
7. Improving Internet security skills
The survey asked Internet users if they would be interested in participating in a practical training
course on Internet security. Seven percent of all Internet users in the EU would consider attending
such a course if it were offered for a charge, and 24% are open to the idea if this training were free.
Overall, 67% of EU Internet users are not at all willing to take part in such a course, mostly because
they are confident that they know enough already (31%). The most likely to have this opinion were the
German (40%), Austrian (38%), British and Danish (37%) users.
Propensity to participate in a course on IT Security
Yes, if it is offered for free
24
31%
Yes, and I am willing to pay for it
7
No, because I have already attended a course in the
5
past
No, because I know enough about IT security to
31
protect myself
67%
No, because I don’t know enough about computers
17
(No) other reasons
14
DK/NA
2
Q8. Would you consider participating in a few hours' course on IT Security to increase your knowledge
on security when you use the internet?
Base: all respondents,
% EU27
Looking at other reasons for not wanting to participate in an Internet security training course we note
that five per cent indicated a lack of interest because they already received training in this subject
(Hungarian users are the most likely to select this option: 12%). Seventeen per cent think that their
current general IT skill level is insufficient to gain any meaningful knowledge from such training.
This opinion is most likely to be held by Slovak (33%), Polish (25%) and Hungarian (23%) users.
Finally, 14% indicated other reasons to explain their lack of interest in a training course of this sort.
Propensity to participate in a course on IT Security
100
Yes
No
75
50
61 59
25
52 48 46 44 44 43 43 41 41 39 38 38 38 37 32 32 31 31 31 31 30 27 25 23 20 14
0
35 41
-25
48 48 51 55 56 55 55 57 54 59 60 60 60 60 67 68 67 67 68 68 69 72 71 75 76 83
-50
-75
-100
7
BG
CY
EL
RO
EE
FI
LU
IE
SE
MT
LT
BE
PT
SI
ES
LV
DE
UK
2
AT
PL
FR
DK
HU
SK
IT
CZ
NL
EU
Q8. Would you consider participating in a few hours' course on IT Security to increase your
knowledge on security when you use the internet?
Base: all respondents
% by country
The highest proportions of those who would be willing to participate in security courses are in
Bulgaria (61%), Cyprus (59%) and Greece (52%), where more than half the users would attend (at
least a free-of-charge) training course on Internet security. Twenty-seven per cent of Bulgarians and
25% of Cypriot Internet users would even be willing to pay for such a course. On the other hand,
page
31
Analytical Report
Flash EB No 250 – Confidence in the Information Society
Dutch (14%), Czech (20%) and Italian (23%) users are the least interested in this training opportunity,
even if it were free.
The openness to participation in this theoretical course varies only very slightly across user segments.
Those who emerged as the most interested - those aged 25-39 years (36%) and women (34%) - are
only slightly more attracted to the idea compared to the 32% EU average. Those willing to pay for
such training were most likely to be self-employed users (10%). (Annex Table 8.b)
page
32
Flash EB No 250 – Confidence in the Information Society
Annex
Flash EB Series #250
Confidence
in the Information
Society
Annex
Tables and
Survey
Details
THE GALLUP ORGANIZATION
page
33
Annex
Flash EB No 250 – Confidence in the Information Society
8. Annex tables
Please note that all results in this report refer to those who use the internet and not the whole
general population. To estimate the EU average, results were weighted reflecting the number of
home Internet users in each Member State based on Eurostat data.
Table 1a. Frequency of access the internet from home – by country .................................................... 35
Table 1b. Frequency of access the internet from home – by segment ................................................... 36
Table 2a. Awareness of the existence of security problems related to Internet usage – by country ..... 37
Table 2b. Awareness of the existence of security problems related to Internet usage – by segment .... 38
Table 3a. Perceived safeness when carrying out transactions over the Internet – by country............... 39
Table 3b. Perceived safeness when carrying out transactions over the Internet – by segment.............. 40
Table 4a. Precautions aimed to increase internet safety – by country................................................... 41
Table 4b. Precautions aimed to increase internet safety – segment....................................................... 42
Table 5a. Security problems experienced – by country......................................................................... 43
Table 5b. Security problems experienced – by segment........................................................................ 44
Table 6a. Damages suffered – by country ............................................................................................. 45
Table 6b. Damages suffered – by segment ............................................................................................ 46
Table 7a. Taking responsibility for ensuring security on the Internet – by country.............................. 47
Table 7b. Taking responsibility for ensuring security on the Internet – by segment............................. 48
Table 8a. Propensity to participate in a course on IT Security – by country......................................... 49
Table 8b. Propensity to participate in a course on IT Security – by segment........................................ 50
page
34
Flash EB No 250 – Confidence in the Information Society
Annex
Table 1a. Frequency of access the internet from home – by country
QUESTION: Q1. In average, how frequently do you access Internet from home?
Total N
% At least once a
% At least weekly, but
% Every day
month
not every day
EU27
12799 3,2
26,7
70,1
COUNTRY
Belgium
500 1,8
24,6
73,6
Bulgaria
500 2,8
11,6
85,6
Czech Rep.
502 2,6
17,9
79,5
Denmark
500 3
16,2 80,8
Germany
501 3,4
36,9 59,7
Estonia
500 5,2
20,6
74,2
Greece
501 4
30,1 65,9
Spain
502 3,2
23,9
72,9
France
502 2,6
22,1
75,3
Ireland
500 7,6
27,2
65,2
Italy
501 6,4
29,5
64,1
Cyprus
250 4,4
24
71,6
Latvia
504 1,6
18,5
80
Lithuania
500 1,2
14,4
84,4
Luxembourg
263 1,9
38,4 59,7
Hungary
501 3,6
22,8 73,7
Malta
253 1,2
21,7
77,1
Netherlands
504 1,8
18,5
79,8
Austria
500 5
34,6 60,4
Poland
505 4,6
17
78,4
Portugal
509 1,2
14,7
84,1
Romania
500 1
20,4 78,6
Slovenia
500 2,6
24
73,4
Slovakia
500 1,8
22,4
75,8
Finland
500 3
25,4 71,6
Sweden
501 4,2
28,5 67,3
United Kingdom
500 2
25,6 72,4
page
35
Annex
Flash EB No 250 – Confidence in the Information Society
Table 1b. Frequency of access the internet from home – by segment
QUESTION: Q1. In average, how frequently do you access Internet from home?
Total N
% At least once
% At least weekly,
% Every day
a month
but not every day
EU27
12799 3,2
26,7 70,1
SEX
Male 5899
1,7
22,7
75,6
Female 6900
4,4
30,1
65,4
AGE
15 - 24
2049
1
17,3
81,7
25 - 39
3282
3,1
25
71,9
40 - 54
4384
3,7
29,4
66,9
55 +
2827
3,9
31,6
64,4
HIGHEST LEVEL OF
EDUCATION
Primary 1295
4,5
31,1
64,3
Secondary 5108
3,7
28,8
67,5
Higher 6213
2,4
24
73,5
URBANISATION
Metropolitan 2705
3,1
23,1
73,8
Urban 7212
3,3
27,8
68,9
Rural 2845
3,1
27,5
69,4
OCCUPATION
Self-employed 1338
2,7
22,2
75,2
Employee 6197
3,2
28,8
68
Manual worker
804
3,8
29,7
66,5
Not working
4253
3,1
24,9
72
INTENSITY OF INTERNET
USAGE
Daily user
8973
0
0
100
Regular user
3826
10,7
89,3
0
page
36
Flash EB No 250 – Confidence in the Information Society
Annex
Table 2a. Awareness of the existence of security problems related to Internet usage –
by country
QUESTION: Q2_A-F. Are you aware of the existence of the following security problems related to internet usage?
% of “Yes” shown
or
e
nt
a
lly
e
e
s
”
by ill
s
computers
quire
a
ation s
t
er
n
e of
ails
potenti
s
ing
h
ons
u
e
ssed
ware
t
by
o
ns lik
m
et
e
n
ate web-sit
i
olati
abus
e
r
n
g
wit
n
e or
al comp
ag
e int
ivacy v
s
on
Total N
Malicious soft
damaging files,
Messages s
fraudsters to ac
personal data i
misleading way
Pr
leak
personal infor
on th
Unsolicited em
('Spam')
Children acces
inappropri
connecti
dangerous pers
Per
remotely „poss
intentioned persons to
attack other computers
EU27
12799 97,1
91,6
90,2
94,5
92,1
81,1
COUNTRY
Belgium
500 92,6 73,4
72,6
91,2
79,6
67,8
Bulgaria
500 93,2 77,4
73,2
70,6
85,6
60,2
Czech Rep.
502 98,6 84,7
77,7
89,6
79,9
77,1
Denmark
500 94,2 86,8
81
93,4
80,6
78,4
Germany
501 98,4 96,6
93,4 98,2
92
85
Estonia
500 97 93,8
91,6 93,4 91,6
83
Greece
501 95,8 91,8
89,4 76,8
88,6
73,5
Spain
502 93,6 88,8
87,8
92
92
79,1
France
502 97 86,1
84,9 94,6 96,6
86,5
Ireland
500 89,6
85
85
90,6
86,6
76
Italy
501 98,8 89,2
91,8
91,6
90,8
74,1
Cyprus
250 91,2 88,8
89,2 67,2
90,4
77,6
Latvia
504 98,8 83,3
84,5
87,3
92,3
75,6
Lithuania
500 96,4
84
87,2 84,6
80,2
74,6
Luxembourg
263 97 93,5
95,1 97,3 94,7
82,9
Hungary
501 99,4
93
91,2
93
95,6
74,1
Malta
253 99,6 93,7
91,3
97,2
98,4
87,7
Netherlands
504 96 90,9
87,7 96,8 89,5
82,5
Austria
500 97,8
94
89,8 97,8
88,4
70
Poland
505 95,2 92,1
92,7 92,5
91,9
81,6
Portugal
509 97,6 94,3
96,1
97,8
94,7
93,1
Romania
500 91,6 74,8
68,6 73,6
69
66,6
Slovenia
500 98,2 93,4
92,2
95,8
93,8
83,6
Slovakia
500 96,4 89,2
88,8 79,8
83,2
68,8
Finland
500 98,8 98,4
92,2 98,2
90,2
89
Sweden
501 97,8 94
92
97,2
95,6
88,6
United
Kingdom
500 98,2 96,2
97,2
97
98,8
80,8
page
37
Annex
Flash EB No 250 – Confidence in the Information Society
Table 2b. Awareness of the existence of security problems related to Internet usage –
by segment
QUESTION: Q2_A-F. Are you aware of the existence of the following security problems related to internet usage?
% of “Yes” shown
al
or
a
in a
s
o
n
a
lly
e
e
s
”
by ill
s
e of per
potenti
t
er
ware
computers
onal dat
ails ('Spam')
ons
u
e
ssed
t
by fraudsters
o
ns lik
e
nt on the
s
ing
h
e
n
i
olati
abus
i
ate web-sit
g
wit
n
e or
opr
al comp
ag
ivacy v
s
on
Total N
Malicious soft
damaging files,
Messages s
to acquire pers
misleading way
Pr
leak
information s
internet
Unsolicited em
Children acces
inappr
connecti
dangerous pers
Per
remotely „poss
intentioned persons to
attack other computers
EU27
12799 97,1 91,6
90,2 94,5
92,1
81,1
SEX
Male 5899
97,8
93,4
91,6
95,9
91,9
85,3
Female 6900
96,5
90
89
93,4
92,4
77,4
AGE
15 - 24
2049
95,8
86,8
84,8
91,8
90,2
80,3
25 - 39
3282
97,1
92,4
91,9
94,9
94,1
81,8
40 - 54
4384
97,8
92,9
91,2
95
94
80,3
55 +
2827
97,2
92,4
91
95,7
89,5
82,3
HIGHEST LEVEL OF
EDUCATION
Primary 1295
94,3
85,9
83,3
90,3
90
79,7
Secondary 5108
97
90,1
88,3
92,8
90,6
78,4
Higher 6213
98
94,2
93,6
97
94,3
83,9
URBANISATION
Metropolitan 2705
96,9
92,4
91
96,1
91,8
82
Urban 7212
97,5
91,9
90,5 94,6 92,3
81,4
Rural
2845
96,6
90,1 88,9 92,7 92,4
79,2
OCCUPATION
Self-employed 1338
97,9
93,9 93,4 96,1 93,7
82,5
Employee 6197
97,7
93,4
92,2
95,9
94,2
82,1
Manual worker
804
96,3
87,9
83,1
89,9
88,2
78,2
Not working
4253
96,4
89,3
88
93,2
90,1
80
INTENSITY OF
INTERNET USAGE
Daily user
8973
97,3
92,7
91
95,7
92,8
83,8
Regular user
3826
96,5
88,9
88,4
91,6
90,6
74,7
page
38
Flash EB No 250 – Confidence in the Information Society
Annex
Table 3a. Perceived safeness when carrying out transactions over the Internet – by
country
QUESTION: Q3. How safe do you feel when you carry out transactions over the internet?
o
ns,
of
the
l
a
fe
a
fe
n
f
connecti
e
ly s
i
fi, etc...)
e
at al
safe
nds o
type o
, w
e,
Total N
% Not saf
% Not really s
% Rather
% Complet
% it depe
circumstances (type
websit
a
t
home
% DK/NA
EU27
12799 10,7 18,5 45,8 12,2
4,2
8,6
COUNTRY
Belgium
500 7,2 9,8 42,6 17,2
9,6 13,6
Bulgaria
500 27,4 12,8 7
9,6
2,4
40,8
Czech Rep.
502 2,4 10 45,8 11,2
7
23,7
Denmark
500 3,2 9,6 60,6 20,8
2,8
3
Germany
501 13 26,1 47,9 3,4
2,6
7
Estonia
500 2,4 17,4 54,8 13,6
7,2
4,6
Greece
501 30,1 19,4 32,7 7,6
2,4
7,8
Spain
502 26,1 22,5 31,3 3,6
5
11,6
France
502 9,4 21,1 46 11,4
4
8,2
Ireland
500 5,6 18 56,8 13
1,6
5
Italy
501 17,6 26,7 37,5 5,4
8
4,8
Cyprus
250 23,6 15,6 28,4 12,4
4,4
15,6
Latvia
504 4,8 23,4 49,4 14,7
2,2
5,6
Lithuania
500 11,4 31,2 33,4 16,4
5,2
2,4
Luxembourg
263 8 27 51 6,5 3,4 4,2
Hungary
501 5,6 26,5 33,5 17,4
12
5
Malta
253 11,5 19 30 9,1
22,1
8,3
Netherlands
504 3,8 8,3 40,7 36,7
2,4
8,1
Austria
500 13,6 20,4 43,4 13
3,6
6
Poland
505 8,3 11,9 52,9 11,1
2,6 13,3
Portugal
509 11,8 23,4 44,2 10,4
7,1
3,1
Romania
500 11 12,8 31 9,6
3,8 31,8
Slovenia
500 7,4 13 38 10,2
3,4
28
Slovakia
500 2,8 6,8 19 15,4
6
50
Finland
500 1,8 5,2 53,8 29,8
7,8
1,6
Sweden
501 5,4 7 55,5 22,2
2,4
7,6
United
Kingdom
500 4,8 11,2 55,6 19,6
4
4,8
page
39
Annex
Flash EB No 250 – Confidence in the Information Society
Table 3b. Perceived safeness when carrying out transactions over the Internet – by
segment
QUESTION: Q3. How safe do you feel when you carry out transactions over the internet?
e
ctions,
n
l
a
fe
the circumstances
type of con
a
fe
n
e,
e
ly s
i
fi, etc...)
e
at al
e
bsit
, w
Total N
% Not saf
% Not really s
% Rather safe
% Complet
% it depends o
(type of w
a
t
home
% DK/NA
EU27
12799 10,7 18,5 45,8 12,2 4,2 8,6
SEX
Male 5899
9,2
16
46,7
15,2
4,4
8,6
Female 6900
12
20,6
45
9,7
4,1
8,6
AGE
15 - 24
2049
8,2
18,5
43,9
10,6
5,3
13,5
25 - 39
3282
8,9
18,3
49
13,1
4,3
6,4
40 - 54
4384
11,7
19,5
45,6
12,5
3,9
6,8
55 +
2827
13,4
16,7
43,9
12,7
3,8
9,6
HIGHEST LEVEL OF
EDUCATION
Primary 1295
15,8
23,3
39,6
8,4
2,8
10,2
Secondary 5108
12,9
19
42,1
11,5
4,7
9,8
Higher 6213
8
17
50,3
13,8
4,1
6,8
URBANISATION
Metropolitan 2705
10,3
17,5
46,7
13,3
4,9
7,2
Urban 7212
11,5
19,5
45,7
10,6
3,7
9
Rural 2845
8,8
16,7
45,3
15,4
5
8,8
OCCUPATION
Self-employed 1338
9,5
21,4
46,6
13,1
4,7
4,8
Employee 6197
10,1
18,4
47,2
13,4
4,3
6,5
Manual worker
804
12,6
13,9
49,5
9,5
2,3
12,2
Not working
4253
11,5
18,4
43
10,9
4,4
11,8
INTENSITY OF
INTERNET USAGE
Daily user
8973
8,8
16,4 48,1 14,2 4,4 8,1
Regular user
3826
15,3
23,3
40,3
7,6
3,9
9,7
page
40
Flash EB No 250 – Confidence in the Information Society
Annex
Table 4a. Precautions aimed to increase internet safety – by country
QUESTION: Q4_A-H. I will read a list of possible actions / behaviors resulting from real or perceived risks of the
internet. For each of these please tell me which applies to you and which does not?
% of “True / it applies” shown
s
t
r
es
e-
et
ique
n
s
e I
(ex.
tern
)
s
p
am
l
emen
i
ving
n
file
n
ch
et
er
n
pe
i
rus,
e
rso
r
i
ty measu
becau
antis
a
l
the i
n
s,
)
-to-
e
cu
t
er
u
e inter
antiv
curity te
ed
th
ing
i
ke
e
wall
se
o
mpu
v
e
v
er
al data o
fir
a
t
ive
r
e
a
t
en
e
antivir
nsi
e-bank
a
g
e
in peer
rn
pe
r
y
out financi
ns o
,
credit card number
c
e,
am or
l
te
products l
p
a
t implement s
otect my c
t eng
t feel th
name
oducts lik
e too ex
ansactio
Total N
I use
antis
I use
I
don'
to pr
don'
I don't protect my computer because
pr
ar
I don't protect my computer because
security is too difficult to imp
and use
I
don't car
tr
commer
I
avoid as much as possible g
out my person
(
ex.
I
don'
sharing with unknown p
EU27
12799 95,6
35
10,2
6,7
6
41,7 86,2 81,4
COUNTRY
Belgium
500 94,8 35,6 9,6 6,2
5,4
37,6 81,6 75
Bulgaria
500 89,4 40,4 13,6 10,4 9,2
66,4 92,4 89
Czech Rep.
502
95 40,2 7,2 5,6 5,2 29,9 74,9
69,7
Denmark
500 94,4 34,6 15,6 6,8
7
33,4 81,4 52,8
Germany
501 95,4 36,3 8,6 3,6
4
48,1 87,6 87,6
Estonia
500 92,4 28
6
3,8 3,2
26 84,6 92,4
Greece
501 93 31,5 13,8 12,4 12,2 66,1 93,2
90
Spain
502 95,4 43,8 23,9 23,1 20,1 55,8 83,9 68,9
France
502 98,2 20,5 4,8
4
3,4
41,4 90 76,3
Ireland
500 92,6 33,8 13,6 11,4 14,8 37,8 86,2
77,8
Italy
501 96,2 26,7 7,2 5,4 4,2
55,3 84,2 83,8
Cyprus
250 82 50 14 6,8 7,6
50 90,4 88
Latvia
504 91,7 29,4 9,3 5,6 7,3
37,9 85,5 83,1
Lithuania
500 93 21 4,4 2,8 2,4 41,8 82,6
76,2
Luxembourg
263 95,4 39,2 11,4 2,7
5,7
35,7 84,8 76,8
Hungary
501 93,2 32,9 13,2
9 5,8 64,9
87,6
88,6
Malta
253 96,8 46,2 7,9 2,4 2,4
37,5 83,8 81,8
Netherlands
504 97,2 34,9 8,1 2,8 2,8 31,9
81,3
68,7
Austria
500 96,6 20
3
2
1,8
40 82,6 81
Poland
505 90,9 42,4 12,9 9,5 8,5 35,4 89,7
84,6
Portugal
509 98,4 51,3 10,4
9
4,5
41,8 89,2 82,5
Romania
500 85,2 31,8 32 23,4 22,6 57,2 83,2 69,8
Slovenia
500 95,2 46,2
9
5,6 4,6
50,2 92 89,6
Slovakia
500 90,2 34,2 10,4 9,6 9,8
47,4 85,6 73
Finland
500 97,2 18,6
3
1,2
1,4
11,2
91 90
Sweden
501 94,4 34,9 18,4
8
9,2
29,5 90,6 76,8
United
Kingdom
500 97,4 43,6 9,2 5,6 4,2
27 84,8 88,8
page
41
Annex
Flash EB No 250 – Confidence in the Information Society
Table 4b. Precautions aimed to increase internet safety – segment
QUESTION: Q4_A-H. I will read a list of possible actions / behaviors resulting from real or perceived risks of the
internet. For each of these please tell me which applies to you and which does not?
% of “True / it applies” shown
s
e
t
r
es
e-
et
ique
n
s
e I
(ex.
tern
s
p
am ar
l
emen
i
ving
n
file
n
ch
et
er
n
pe
i
rus,
e
rso
r
i
ty measu
becau
antis
a
l
the i
n
t
er
s,
-to-
u
e inter
g
)
antiv
curity te
e
cu
ed
th
in
i
ke
e
wall
se
o
mpu
v
er
al data o
fir
a
t
ive
r
e
a
t
en
e
antivir
i
v
e
e-bank
a
g
e
in peer
rn
r
y
out financi
ns o
c
e,
am or
l
te
products l
p
a
t implement s
otect my c
p
ens
t eng
t feel th
oducts lik
ansactio
Total N
I use
antis
I use
I
don'
to pr
don'
I don't protect my computer because
pr
too ex
I don't protect my computer because
security is too difficult to imp
and use
I
don't car
tr
commer
I
avoid as much as possible g
out my person
(ex. name, credit card number)
I
don'
sharing with unknown p
EU27
12799 95,6 35 10,2 6,7
6
41,7 86,2 81,4
SEX
Male 5899
96,4
40
10,3
6,7
5,3
38,9
85,8
80
Female 6900
94,9
30,7
10,1
6,7
6,6
44,1
86,6
82,6
AGE
15 - 24
2049
94,7
37,7
12,7
7
6,3
47,3
84
74,2
25 - 39
3282
97
36,8
10,1
7
5,7
39,5
85,3
79,7
40 - 54
4384
96
34,6
8,5
6,6
6,2
39,9
86,3
83,2
55
+
2827
94,1 31 11,5 6,5 6,2 43 88,8 86
HIGHEST
LEVEL OF
EDUCATION
Primary 1295
91,4
29
11,7
8,4
8,1
52
88
77,3
Secondary 5108
95
34
11
7,8
7,4
45,8
86,4
79,7
Higher
6213
97,1 36,6 9,2 5,3 4,3 35,8
85,8
83,8
URBANISATION
Metropolitan 2705
95,1
33,9
10,6 6,6 5,7 38,1 84,5 80,7
Urban
7212 95,7 36,7 10 6,6 6 44,2 86,7 82,3
Rural 2845
95,9
31,6
10,2
6,7
6,2
38,4
86,8
80
OCCUPATION
Self-employed 1338
96
39,2
9,4
5,1
5,8
35,7
84,5
86,3
Employee 6197
96,9
33,6
9,7
5,8
5,1
39,3
86,5
82,9
Manual
worker 804 94,8 38,4 11,2 10,5 6,1 45,3 87,6 76,7
Not working
4253
93,7
34,2
11,1
7,6
7,3
46,4
86,5
79
INTENSITY OF
INTERNET
USAGE
Daily
user
8973
96,7
37,8 9,5 6,8 5,3 37,6
84,8
80,1
Regular user
3826
93,1
28,4
11,7 6,5 7,8 51,5 89,6 84,5
page
42
Flash EB No 250 – Confidence in the Information Society
Annex
Table 5a. Security problems experienced – by country
QUESTION: Q5_A-G. Did you have any of the following security problems using the internet in the last five years?
% of “Yes” shown
my
d
d
they
ed
e
nt by
e
s,
et
solicite
t
ware
fraudsters and
ation s
s
violat
m
t
e
r
n
potentially
ons
ill intentioned
e
body abuse
ny un
e in
ma
ate web-sit
som
th
e
d
ed” by
ivacy wa
iv
e
ss
cause
ce
Total N
A malicious sof
(computer virus) damaged my
files/computer
I was fooled by
gave them personal data
My pr
be
personal infor
me over
I re
emails ('Spam')
My children accessed
inappropri
connected with
dangerous pers
My computer was remotely
”poss
persons
EU27
12799 46,2
2,9
4,7
65,3
5
3,2
COUNTRY
Belgium
500 49,4 3,6
5,4
65,6
9,5 10,4
Bulgaria
500 65,4 4,4
4,8
51,4
7,0
5,8
Czech Rep.
502 53,2 2,6
4,2
62,7
6,3
2,4
Denmark
500 43,6
3
2,4
59,4
6,7
5,2
Germany
501 41,5 4,2
4,2 64,7
3,8
1
Estonia
500 59 2,6 4,8
70
10,0 4,2
Greece
501 55,3 1,6
6,2 62,5
4,6
4,2
Spain
502 56,2 1,6
3,8
65,1
3,8
5,6
France
502 44
1
3
76,5 5,0 3,8
Ireland
500 38,6 7,2
7,8
53,8
7,8
5,6
Italy
501 57,5 1,8
8,2 63,7
3,4
3,8
Cyprus
250 44,4
2
3,6
46,4
8,1
1,6
Latvia
504 56 1,8 1,6
54
8,9 3,2
Lithuania
500 54,8 1,8
5
59,2
8,5
5
Luxembourg
263 42,6 1,9
2,7
62
3,9
0,8
Hungary
501 64,5 3,8
5
67,9
9,2
3,4
Malta
253 65,2 8,3
7,5
72,3
8,2
11,1
Netherlands
504 42,7 3,6
5,4
66,7
8,7
2,4
Austria
500 38,8 2,2
4,6
67,4
5,1
1,6
Poland
505 43,2 1,8
3,8
62,2
5,5
1,6
Portugal
509 52,7 2,9
4,5
83,1
2,8
6,1
Romania
500 65,4 4,8
8,4
58,4
7,2
7
Slovenia
500 48,2
3
2,8
61
2,1
3,2
Slovakia
500 49,6 1,4
1,6
30,8
2,1
1,4
Finland
500 42,2 1,8
3
46,8
11,5
4
Sweden
501 37,7 1,2
1
49,5
2,9
2,4
United
Kingdom
500 42,4 3,6
6,2
67,6
5,3
3,8
page
43
Annex
Flash EB No 250 – Confidence in the Information Society
Table 5b. Security problems experienced – by segment
QUESTION: Q5_A-G. Did you have any of the following security problems using the internet in the last five years?
% of “Yes” shown
v
e
i
ls
e
r
s
e
d ga
n
d ema
rs a
ed with
ed becau
dste
u
solicite
t
ware (comput
s
violat
connect
g
erous persons
ill intentioned
e
nt by me over the
ny un
by fra
al data
d
ma
y dan
e
d
e
s, they
ed” by
ivacy wa
iv
ntiall
e
ss
a
s foole
ce
Total N
A malicious sof
virus) damaged my files/computer
I w
them person
My pr
somebody abused my personal
information s
internet
I re
('Spam')
My children accessed inappropriate
web-sit
pote
My computer was remotely
”poss
persons
EU27
12799 46,2 2,9
4,7 65,3
5
3,2
SEX
Male 5899
50,4
3,1
5,6
68,4
4,7
3,9
Female 6900
42,6
2,7
4
62,7
5,4
2,7
AGE
15 - 24
2049
59
2,8
5,3
66
4,7
3,3
25 - 39
3282
50
3,9
5,5
71,9
3,3
4,1
40 - 54
4384
46,2
2,8
5,1
64,4
7,9
3
55 +
2827
32,9
1,9
2,9
59,3
2,4
2,7
HIGHEST LEVEL OF
EDUCATION
Primary 1295
44,6
2,2
3,9
56,6
6,5
3
Secondary 5108
47,9
3 4,6 61,2
5,2
3,6
Higher 6213
45,3
2,8
4,9
70,8
4,7
2,9
URBANISATION
Metropolitan 2705
42,3 3,3 5,3 68,8 4,9 2,4
Urban 7212
46,9
2,7
4,6
64,5
4,7
3,2
Rural 2845
47,7
2,7
4,3
63,9
6,2
4
OCCUPATION
Self-employed 1338
49,3
3,4
7,8
74
5,9
4,9
Employee 6197
45,2
3
4,8
67,8
5,6
2,8
Manual worker
804
49,2
1,9
4,8
58,9
7,5
4,6
Not working
4253
45,6
2,7
3,4
60,5
3,4
3,1
INTENSITY OF
INTERNET USAGE
Daily user
8973
49,5
3,1
5,2
69,4
5,8
3,6
Regular user
3826
38,5
2,5
3,4
55,7
3,3
2,3
page
44
Flash EB No 250 – Confidence in the Information Society
Annex
Table 6a. Damages suffered – by country
QUESTION: Q6_A-E. What damages have you experience?
% of ”Experienced” shown
Base: who had any security problem in the last five years
Total N
Loss of
Financial
Embarrassment
Loss of
Loss of
time (ex.
losses (ex.
and/or
personal
other data
had to
money
humiliation
data (ex.
reset
robbed,
credit card
computer,
computer
number,
computer
repair
confidential
performed
costs, loss
information
slowly due
of valuable
about me)
to a virus)
data)
EU27
9954 66,9 16
7,7
8
18,4
COUNTRY
Belgium
398 67,3 17,1
11,1
7,5 18,6
Bulgaria
390 70 29,5 23,3 19,7 30,5
Czech Rep.
385 75,3 16,9
3,4
7 13,5
Denmark
368 60,6 12,8
4,3
8,7 22,3
Germany
389 61,7 13,4
4,4
6,9 16,2
Estonia
427 68,1 28,1
11,7
6,6 16,6
Greece
390 77,4 22,1
11,5
8,5 20,3
Spain
414 74,9 9,7
4,3
8,9 16,2
France
423 62,6 14,9
22,2
11,6 22,5
Ireland
335 75,8 19,1
7,5
12,8 18,8
Italy
401 77,1 20,7
6
11,7 25,4
Cyprus
174 69,5 19,5
1,1
4,6 16,7
Latvia
378 75,7 27
15,1
6,6 16,1
Lithuania
387 73,9 25,1
13,4
5,2 17,8
Luxembourg
198 61,6 16,7
2
5,1 11,1
Hungary
424 75,5 25
3,5
5,2 14,4
Malta
223 72,6 30
9
14,8 20,2
Netherlands
389 57,6 10,5
2,3
5,4 12,9
Austria
385 55,6 18,2
0,5
7,5 20,5
Poland
365 67,7 18,6
15,6
5,2 20,5
Portugal
446 68,6 17,5
4,7
9,9 18,2
Romania
404 80,7 13,6
9,2
18,6 29,7
Slovenia
372 78 25
2,7
3,8 16,9
Slovakia
309 79,6 15,5
1
2,3 12,9
Finland
339 75,8 14,5
3,2
3,8 11,5
Sweden
330 63,3 9,1
2,7
1,2 18,8
United Kingdom
376 68,1 20,2
4,5
6,9 16,5
page
45
Annex
Flash EB No 250 – Confidence in the Information Society
Table 6b. Damages suffered – by segment
QUESTION: Q6_A-E. What damages have you experience?
% of ”Experienced” shown
Base: who had any security problem in the last five years
Total
Loss of
Financial
Embarrassment
Loss of
Loss of
N
time (ex.
losses (ex.
and/or
personal
other data
had to
money
humiliation
data (ex.
reset
robbed,
credit card
computer,
computer
number,
computer
repair
confidential
performed
costs, loss
information
slowly due of valuable
about me)
to a virus)
data)
EU27
9954 66,9
16
7,7
8
18,4
SEX
Male 4738
69,1
14,1
7,3
8
18,7
Female 5216
64,9
17,7
8,1
8,1
18,1
AGE
15 - 24
1671
75,9
16,1
9,6
11,2
26
25 - 39
2732
68,2
14,5
7,4
9,3
20,1
40 - 54
3398
68
18,9
8,4
8,5
18
55 +
1975
56,2
13,3
5,5
3,3
11
HIGHEST LEVEL
OF EDUCATION
Primary 922
67,9
15,9
6,6
5,9
21,8
Secondary 3877
68,7
16,2
7,3
8,7
18,6
Higher 5027
65,5
15,8
8,2
7,8
17,8
URBANISATION
Metropolitan 2149
62,8
15,4 7,7 8,1
17,9
Urban 5568
68
15,1
7,3
7,9
18,6
Rural 2203
68
18,5
8,6
8,2
18,6
OCCUPATION
Self-employed 1118
66 19 8,2 8,3 18,8
Employee 4903
67,3
15,6
7,7
8,2
18,5
Manual worker
613
66,3
14,2
7,4
8,5
15,7
Not working
3164
66,8
15,6
7,5
7,4
19
INTENSITY OF
INTERNET USAGE
Daily user
7315
68,6 16,2
8
8,9 19,8
Regular user
2639
62,1
15,4
6,7
5,7
14,4
page
46
Flash EB No 250 – Confidence in the Information Society
Annex
Table 7a. Taking responsibility for ensuring security on the Internet – by country
QUESTION: Q7_1-9. Who, in your opinion, is responsible for ensuring your security on the internet?
% of ”mentioned” shown
Total N
Me,
My
My
The public
The
DK/NA
personally equipment
internet
authorities organisation
and
access
providing
software
provider
an on-line
suppliers
service
EU27
12799
75 39,5 51,9 31,4 51,2 4,2
COUNTRY
Belgium
500 71,8 30 47,6 17
38,8 5,8
Bulgaria
500 47,4 17,2 45,2 17,2 18,2 14,4
Czech Rep.
502 62,7 29,3 37,8
5
28,5 8,8
Denmark
500 85,8 20,6 42,2 16,4 32,4 2,2
Germany
501 84,8 43,9 55,3 36,5 64,1 1,2
Estonia
500
78,6 50,6 64 39,4 62,2 5,2
Greece
501 69,3 35,9 45,1 38,9 40,7 2,8
Spain
502 53,6 34,1 34,7 37,8 31,7 5,6
France
502 69,3 45
45 19,5 35,9 8,4
Ireland
500 77,4 25,8 34,6 16,2 25,2
9
Italy
501 41,5 22,4 42,5 45,7 37,7 8,8
Cyprus
250 76,8 19,2 28,4 16,4 28,8 4,8
Latvia
504 67,3 25,6 43,7 18,5 38,5
6
Lithuania
500 58,2 31,6 37,2 15,6 24,6 10
Luxembourg
263 79,5 38,8 54,8 34,2 68,8 1,9
Hungary
501 72,7 42,9 63,3 24,8 43,7 6,8
Malta
253 64,4 15,8 38,7 17,8 29,6 3,2
Netherlands
504 75,4 24,6 56,9 29,6 38,5 5,8
Austria
500 76,8 30,2 59,4 22,8
51
1,8
Poland
505 65,7 29,9 49,5 17,2
36
4,8
Portugal
509 71,3 32
47 25,7 40,9 2,6
Romania
500 65,6 25,6 33,2 7,8
13,8
7
Slovenia
500 76,2 34,2 44,4 16
38
4
Slovakia
500 53,2 24 35,8 6,4
22 17,6
Finland
500 83,6 34,8 43 24,4
59
0,6
Sweden
501 89,2 20,2 27,7 14,4 29,7 2,6
United
Kingdom
500 95,2 63,2 74,6 46,6 89,2 0,6
page
47
Annex
Flash EB No 250 – Confidence in the Information Society
Table 7b. Taking responsibility for ensuring security on the Internet – by segment
QUESTION: Q7_1-9. Who, in your opinion, is responsible for ensuring your security on the internet?
% of ”mentioned” shown
Total
Me,
My
My
The public
The
DK/NA
N
personally equipment internet authorities organisation
and
access
providing
software
provider
an on-line
suppliers
service
EU27
12799 75
39,5 51,9 31,4
51,2 4,2
SEX
Male 5899
76,7
38,1
52,2
29,7
52,1
3,5
Female 6900
73,5
40,7
51,6
32,9
50,4
4,8
AGE
15 - 24
2049
71,1
33,5
37,7
23,6
43,4
6,8
25 - 39
3282
77,5
40
50,7
32,8
53,4
2,7
40 - 54
4384
76,3
41,1
58,1
35
54,1
3,4
55 +
2827
73,5
39,6
53,9
29,4
50,2
4,6
HIGHEST LEVEL
OF EDUCATION
Primary 1295
68
34,7
49,8
27,2
43,1
7,1
Secondary 5108
70,4
35,8
48,6
28,7
44,8
5,1
Higher 6213
80,9
43,7 54,8 34,6 58,4 2,8
URBANISATION
Metropolitan 2705
75,7 39,1
51,1
32,7 52 3,7
Urban 7212
75,4
39,7 52,5 31,8 52,3 3,8
Rural 2845
73,8
39,3
51,1
29
47,8
5,3
OCCUPATION
Self-employed 1338
73,6 40,4 53,5 32,4 50,4 3,9
Employee 6197
77,4
41,8
55,7
32,6
55,2
3
Manual worker
804
77,4
33,5
48,4
27,5
47,7
2,9
Not working
4253
71,9
37
46,7
29,9
46,9
6,2
INTENSITY OF
INTERNET
USAGE
Daily user
8973
75,4
39,5
51,9
30,8
50,9
3,8
Regular user
3826
74
39,5
51,7
32,7
51,8
5,2
page
48
Flash EB No 250 – Confidence in the Information Society
Annex
Table 8a. Propensity to participate in a course on IT Security – by country
QUESTION: Q8. Would you consider participating in a few hours' course on IT Security to increase your knowledge
on security when you use the internet?
to
se
a cour
fered for
I
have
d
I
know
e
lf
I
don't
am willing
nde
te
t
a
s
ons
and I
r re
because
because
because
t
he
ee
e
ady at
O
Total N
% Yes, if it is of
fr
% Yes,
pay for it
% No,
alr
in the pas
% No,
enough about IT security
to protect mys
% No,
know enough about
computers
%
% DK/NA
EU27
12799 24,3 7,2
4,7
31,3
17,2 13,5 1,6
COUNTRY
Belgium
500 31,8 7,4 5,2
19 13,8 20,8 2
Bulgaria
500 34 26,8 2,4 12,8 11,8 8,4 3,8
Czech Rep.
502 14,7 5,2 5,4 31,9 19,5 19,3 4
Denmark
500 20 9,8 5,4 37 16,6 9,8 1,4
Germany
501 23 8,8 3,6 39,7 17 7 1
Estonia
500 40,4 5,2
3
21,2 15,6 10,8 3,8
Greece
501 35,7 16 9,4 21,2 5,8 11,2 0,8
Spain
502 31,3 6,4
8
18,1 16,3 17,7 2,2
France
502 25,5 5
3
27,3 20,9 16,9 1,4
Ireland
500 28,4 14,6 2,8 24,8 21,8 5,6 2
Italy
501 19,2 3,4 9
25,3 15,2 25,9 2
Cyprus
250 34 24,8 4 17,2 13,2 6,8 0
Latvia
504 33,5 3
2,6 27,8 18,1 11,7 3,4
Lithuania
500 32,2 8,8 7,8 20,4 4,8 21,2 4,8
Luxembourg
263 25,1 19 7,2 25,9 15,2 7,6 0
Hungary
501 22,2 4,6 12,4 18,2 23 18,4 1,4
Malta
253 22,9 18,2 9,5
17
8,3 22,5 1,6
Netherlands
504 8,1 5,4 3,2 38,9 19,6 21,6 3,2
Austria
500 21 9,8 5,8 37,6 10,6 12,8 2,4
Poland
505 25,1 5,7 2,8 27,9 25 12,1 1,4
Portugal
509 31,6 6,7 5,1 21,4 6,1 27,5 1,6
Romania
500 36 12,4 3,6 13,4 21,8 9 3,8
Slovenia
500 24,2 13,8 5,4 31,6 14,8 8,4 1,8
Slovakia
500 18,8 6,2
5
23,4 33,4 9,2 4
Finland
500 31,2 13,2 6,8 27,8 10,2 9,8 1
Sweden
501 24 19 4 27,7 14,2 8,8 2,4
United
Kingdom
500 27 4,6 4,2 37,4 15,8 10,2 0,8
page
49
Annex
Flash EB No 250 – Confidence in the Information Society
Table 8b. Propensity to participate in a course on IT Security – by segment
QUESTION: Q8. Would you consider participating in a few hours' course on IT Security to increase your knowledge
on security when you use the internet?
a
fered for
I
have
d
a
st
I
know
e
lf
I
don't
am willing
nde
te
a
s
ons
and I
r re
because
because
because
t
he
ee
e
ady at
O
Total N
% Yes, if it is of
fr
% Yes,
to pay for it
% No,
alr
course in the p
% No,
enough about IT security
to protect mys
% No,
know enough about
computers
%
% DK/NA
EU27
12799 24,3 7,2 4,7 31,3 17,2 13,5 1,6
SEX
Male 5899
22,3
6,5
5
40,6
12,5
11,8
1,3
Female 6900
26
7,9
4,5
23,4
21,3
15
1,9
AGE
15 - 24
2049
25,4
5,5
4,2
37,1
14
12,5
1,4
25 - 39
3282
27,9
7,9
4,7
31,4
13,8
12,8
1,6
40 - 54
4384
23
7,8
5 29,2
19,7 13,9 1,5
55 +
2827
21,1
7,1
4,6
30,8
20,2
14,4
1,7
HIGHEST LEVEL OF
EDUCATION
Primary 1295
23,2
6,4
2,9
29,4
25,7
11,3
1
Secondary 5108
24,2
6,5
4,9
27,5
20,4
14,6
1,9
Higher 6213
24,5
7,9
5,1
35
13
13,1
1,4
URBANISATION
Metropolitan 2705
23,4
8
4
33,3
14,2
15,3
1,8
Urban 7212
24,7
6,8
4,9
32
18
12,1
1,6
Rural
2845 24,3 7,6 4,9 28 17,9 15,7 1,6
OCCUPATION
Self-employed 1338
18,8
9,8 3,8 34,8 13,8 17,2 1,8
Employee 6197
24,7
8
5,6
31,2
16,2
13
1,4
Manual worker
804
27
3,6
3,5
28,9
21,9
13
2,2
Not working
4253
24,9
6,2
3,9
30,9
19
13,5
1,5
INTENSITY OF
INTERNET USAGE
Daily user
8973
24,9
7,2
4,7 34,2 14,4 13,2 1,5
Regular
user
3826
22,9 7,4 4,8 24,5 24 14,4 2
page
50
Flash EB No 250 – Confidence in the Information Society
Annex
9. Survey details
This survey on the General population survey on “Survey on confidence in the information society”
was conducted for the European Commission, DG Information Society & Media DG – Unit A3:
Internet; Network and Information Security.
Telephone interviews were conducted in each country between the 16/09/2008 and the 20/9/2008 by
these Institutes:
Belgium
BE
Gallup Europe
(Interviews : 16/09/2008 - 20/09/2008 )
Czech Republic
CZ
Focus Agency
(Interviews : 16/09/2008 - 20/09/2008 )
Denmark
DK
Hermelin
(Interviews : 16/09/2008 - 20/09/2008 )
Germany
DE
IFAK
(Interviews : 16/09/2008 - 20/09/2008 )
Estonia
EE
Saar Poll
(Interviews : 16/09/2008 - 20/09/2008 )
Greece
EL
Metroanalysis
(Interviews : 16/09/2008 - 20/09/2008 )
Spain
ES
Gallup Spain
(Interviews : 16/09/2008 - 20/09/2008 )
France
FR
Efficience3
(Interviews : 16/09/2008 - 20/09/2008 )
Ireland
IE
Gallup UK
(Interviews : 16/09/2008 - 20/09/2008 )
Italy
IT
Demoskopea
(Interviews : 16/09/2008 - 20/09/2008 )
Cyprus
CY
CYMAR (Interviews : 16/09/2008 - 20/09/2008 )
Latvia
LV
Latvian Facts
(Interviews : 16/09/2008 - 20/09/2008 )
Lithuania
LT
Baltic Survey
(Interviews : 16/09/2008 - 20/09/2008 )
Luxembourg
LU
Gallup Europe
(Interviews : 16/09/2008 - 20/09/2008 )
Hungary
HU
Gallup Hungary
(Interviews : 16/09/2008 - 20/09/2008 )
Malta
MT
MISCO
(Interviews : 16/09/2008 - 20/09/2008 )
Netherlands
NL
Telder
(Interviews : 16/09/2008 - 20/09/2008 )
Austria
AT
Spectra
(Interviews : 16/09/2008 - 20/09/2008 )
Poland
PL
Gallup Poland
(Interviews : 16/09/2008 - 20/09/2008 )
Portugal
PT
Consulmark
(Interviews : 16/09/2008 - 20/09/2008 )
Slovenia
SI
Cati d.o.o
(Interviews : 16/09/2008 - 20/09/2008 )
Slovakia
SK
Focus Agency
(Interviews : 16/09/2008 - 20/09/2008 )
Finland
FI
Norstat Finland Oy
(Interviews : 16/09/2008 - 20/09/2008 )
Sweden
SE
Hermelin
(Interviews : 16/09/2008 - 20/09/2008 )
United Kingdom
UK
Gallup UK
(Interviews : 16/09/2008 - 20/09/2008 )
Bulgaria
BG
Vitosha
(Interviews : 16/09/2008 - 20/09/2008 )
Romania
RO
Gallup Romania
(Interviews : 16/09/2008 - 20/09/2008 )
Representativeness of the results
Target of the sample is general population 15 years of age or older, who have access to Internet at home
and use the Internet at least once a month, in each Member State.
page
51
Annex
Flash EB No 250 – Confidence in the Information Society
Sizes of the sample
In most EU countries the target sample size was 500 respondents (in Cyprus, Malta and Luxembourg
the target was 250 interviews), the table below shows the achieved sample size by country.
Weighting of the sample
Due to absence of recent systematic information regarding the characteristics of the internet user
population, a nonresponse weighting (e.g. controlling for specific socio-demographic parameters such
as age, sex, etc.) was not carried out in the sample. However, for calculating average figures for
multiple countries (most notably the overall average for the EU), a weight factor was assigned to each
country.
This weight factor reflects the proportion of internet population in each Member State as provided by
Eurostat (Statistics on Information Society, data series for 2007). Please note that this is only an
approximation of the true weights, as the target population of this survey (used the internet from home
at least once in the month prior to interview, aged 15+) differed slightly from the one the internet
usage is provided for by Eurostat (used the internet from home at least once in the past 3 months, aged
15-743). Nevertheless, this difference is rather minimal (from the survey we know that the proportion
of users who use the internet at least once a month but more rarely than once a week is only 4%, thus
the difference between one and three months is probably an even lower proportion; and users ages 75
or more comprise less than 1% of the total internet population as measured by this survey), thus, the
Eurostat reference data was considered as applicable for calculating the country weights.
As a result of this procedure, a weighting factor was applied to the national results in order to compute
a marginal total where each country contributes to the European Union result in proportion to the
estimated size of its internet population.
The table below presents, for each of the countries (along with other relevant information):
(1) the number of interviews actually carried out in each country
(2) the population-weighted total number of interviews for each country
(2)
(1)
country in
interviews
total 15+
internet
weighted
conducted
% of total
pop.
users est.
sample
% of total
(cases)
(unweighted)
'000
'000
(cases)
(weighted)
Total EU27
12799
100
405 180
189 852
12799
100
BE
500
3.9
8 599
5 159
348
2.7
BG
500
3.9
6 688
1 471
99
0.8
CZ
502
3.9
8 694
3 217
217
1.7
DK
500
3.9
4 359
3 356
226
1.8
DE
501
3.9
71 033
45 461
3065
23.9
EE
500 3.9 1
135
602 41 0.3
EL
501
3.9
9 300
1 953
132
1
ES
502
3.9
34 915
13 268
894
7
FR
502
3.9
48 071
22 113
1491
11.6
IE
500
3.9
3 187
1 402
95
0.7
IT
501
3.9
49 698
14 909
1005
7.9
3 For Eurostat Statistics on Information Society metadata please refer to
http://epp.eurostat.ec.europa.eu/cache/ITY_SDDS/EN/isoc_ci_base.htm
page
52
Flash EB No 250 – Confidence in the Information Society
Annex
CY
250 2 606
163
11
0.1
LV
504 3.9 1
959
842 57 0.4
LT
500
3.9
2 840
1 108
75
0.6
LU
263 2.1 356
257 17 0.1
HU
501
3.9
8 370
3 181
214
1.7
MT
253 2 327
137
9 0.1
NL
504
3.9
13 270
10 881
734
5.7
AT
500
3.9
6 679
3 674
248
1.9
PL
505
3.9
31 797
10 493
707
5.5
PT
509
4
8 700
2 349
158
1.2
RO
500
3.9
17 860
2 858
193
1.5
SI
500 3.9 1
716
772 52 0.4
SK
500
3.9
4 466
1 518
102
0.8
FI
500
3.9
4 322
3 025
204
1.6
SE
501
3.9
7 428
5 422
366
2.9
UK
500
3.9
48 808
30 261
2040
15.9
Questionnaires
1. The questionnaire prepared for this survey is reproduced at the end of this results volume, in
English (see hereafter).
2. The institutes listed above translated the questionnaire in their respective national
language(s).
3. One copy of each national questionnaire is annexed to the data tables results volumes.
Tables of results
VOLUME A: COUNTRY BY COUNTRY
The VOLUME A presents the European Union results country by country.
VOLUME B: RESPONDENTS’ DEMOGRAPHICS
The VOLUME B presents the European Union results with the following socio-demographic
characteristics of respondents as breakdowns:
Volume B:
Sex (Male, Female)
Age (15-24, 25-39, 40-54, 55 +)
Education (primary education, secondary education , higher education)
Subjective urbanisation (Metropolitan zone, Other town/urban centre, Rural zone)
Occupation (Self-employed, Employee, Manual worker, Not working)
Intensity of internet usage (daily user, regular user)
Sampling error
The results in a survey are valid only between the limits of a statistical margin caused by the sampling
process. This margin varies with three factors:
1. The sample size (or the size of the analysed part in the sample): the greater the number of
respondents is, the smaller the statistical margin will be;
2. The result in itself: the closer the result approaches 50%, the wider the statistical margin will be;
3. The desired degree of confidence: the more "strict" we are, the wider the statistical margin will be.
page
53
Annex
Flash EB No 250 – Confidence in the Information Society
As an example, examine this illustrative case:
1. One question has been answered by 500 people;
2. The analysed result is around 50%;
3. We choose a significance level of 95 % (it is the level most often used by the statisticians, and it is
the one chosen for the Table hereafter);
In this illustrative case the statistical margin is: (+/- 4.4%) around the observed 50%. And as a
conclusion: the result for the whole population lies between 45.6% and 54.4 %.
Hereafter, the statistical margins computed for various observed results are shown, on various sample
sizes, at the 95% significance level.
STATISTICAL MARGINS DUE TO THE SAMPLING PROCESS (AT THE 95 % LEVEL OF
CONFIDENCE)
Various sample sizes are in rows;
Various observed results are in columns:
5% 10% 15% 20% 25% 30% 35% 40% 45% 50%
N=50 6,0 8,3 9,9 11,1 12,0 12,7 13,2 13,6 13,8 13,9
N=500
1,9 2,6 3,1 3,5 3,8 4,0 4,2 4,3 4,4 4,4
N=1000
1,4 1,9 2,2 2,5 2,7 2,8 3,0 3,0 3,1 3,1
N=1500
1,1 1,5 1,8 2,0 2,2 2,3 2,4 2,5 2,5 2,5
N=2000
1,0 1,3 1,6 1,8 1,9 2,0 2,1 2,1 2,2 2,2
N=3000
0,8 1,1 1,3 1,4 1,5 1,6 1,7 1,8 1,8 1,8
N=4000
0,7 0,9 1,1 1,2 1,3 1,4 1,5 1,5 1,5 1,5
N=5000
0,6 0,8 1,0 1,1 1,2 1,3 1,3 1,4 1,4 1,4
N=6000
0,6 0,8 0,9 1,0 1,1 1,2 1,2 1,2 1,3 1,3
page
54
Flash EB No 250 – Confidence in the Information Society
Annex
10. Questionnaire
BACKGROUND VARIABLES
Q1. In average, how frequently do you access Internet from home?
[-SINGLE RESPONSE]
- Never.............................................................................................1
- Less than once a month.................................................................2
- At least once a month....................................................................3
- At least weekly, but not every day................................................4
- Every day ......................................................................................5
- [DK/NA] .......................................................................................9
IF “NEVER” OR “LESS THAN ONCE A MONTH”, Q1=1 OR 2, THANK AND TERMINATE
OR IF [DK/NA] Q1=9. THANK AND TERMINATE
Q2. Are you aware of the existence of the following security problems related to internet usage?
- Yes ................................................................................................1
- No..................................................................................................2
- [DK/NA] .......................................................................................9
a) Malicious software (ex. computer viruses) damaging files or computers.................... 1 2 9
b) Messages sent by fraudsters to acquire personal data in a misleading way
(“Phishing”) ................................................................................................................. 1 2 9
c) Privacy violations like leakage or abuse of personal information sent on the
internet (including theft of identity and of credit card numbers) ................................. 1 2 9
d) Unsolicited emails (‘Spam’) ........................................................................................ 1 2 9
e) Children accessing inappropriate web-sites or connecting with potentially
dangerous persons ........................................................................................................ 1 2 9
f) Personal computers remotely “possessed” by ill intentioned persons to
attack other computers (‘botnets’), that is they manage to control
somebody’s computer without the victim being aware of it ........................................ 1 2 9
Q3. How safe do you feel when you carry out transactions over the internet?
- Not safe at all ................................................................................1
- Not really safe ...............................................................................2
- Rather safe ....................................................................................3
- Completely safe ............................................................................4
page
55
Annex
Flash EB No 250 – Confidence in the Information Society
- [it depends on the circumstances (type of website, type of connections, at home,
wifi, etc…)] .....................................................................................5
- [DK/NA] .......................................................................................9
Q4. I will read a list of possible actions / behaviours resulting from real or perceived risks of the
internet. For each of these please tell me which applies to you and which does not?
[MULTIPLE RESPONSES]
True / it applies................................................................................1
False / it does not apply...................................................................2
[Not applicable/don’t use the application] .....................................3
[DK/NA] .........................................................................................9
A. I use products like antivirus, antispam or firewall................................................... 1 2 3 9
B. I use alternative security techniques ........................................................................ 1 2 3 9
C. I do not implement security measures to protect my computer because I do
not feel threatened.................................................................................................. 1 2 3 9
D. I do not protect my computer because products like antivirus or antispam
are too expensive ................................................................................................... 1 2 3 9
E. I do not protect my computer because security is too difficult to implement
and use ................................................................................................................... 1 2 3 9
F. I do not carry out financial transactions over the internet (ex. e-commerce,
e-banking) .............................................................................................................. 1 2 3 9
G. I avoid as much as possible giving out my personal data on the internet
(ex. name, age, credit card number, email address, religion) ................................ 1 2 3 9
H. I don’t engage in peer-to-peer file sharing with unknown persons ......................... 1 2 3 9
Q5. Did you have any of the following security problems using the internet in the last five years?
- Yes ................................................................................................1
- No..................................................................................................2
- [Not applicable(only for option Q5.F)].........................................3
- [DK/NA] .......................................................................................9
A. A malicious software (computer virus) damaged my files or my
computer (ex. My computer was not working anymore or was working
very slowly, I was always re-directed to a website I did not choose).................... 1 2 3 9
B. I was fooled by fraudsters and gave them personal data (“Phishing”).............. 1 2 3 9
C. My privacy was violated because somebody abused my personal
information sent by me over the internet (ex. ID, credit card number or
other personal information I did not want to be disclosed) or my data
were unduly disclosed by a third party .................................................................. 1 2 3 9
E. I received many unsolicited emails (‘Spam’).................................................... 1 2 3 9
page
56
Flash EB No 250 – Confidence in the Information Society
Annex
F. My children accessed inappropriate web-sites, they connected with
potentially dangerous persons................................................................................ 1 2 3 9
G. My computer was remotely “possessed” by ill intentioned persons
(“botnet”) ............................................................................................................... 1 2 3 9
ASK ONLY IF ANY RESPONSE IS YES IN Q5
Q6. What damages have you experience?
- Experienced ..................................................................................1
- Did not experience ........................................................................2
- [DK/NA] .......................................................................................9
a) Loss of time (ex. I had to reset my computer, my computer performed
slowly due to a virus) ................................................................................................... 1 2 9
b) Financial losses (ex. money robbed, computer repair costs, loss of valuable
data).............................................................................................................................. 1 2 9
c) Embarrassment and/or humiliation .............................................................................. 1 2 9
d) Loss of personal data (ex. credit card number, confidential information
about me) ..................................................................................................................... 1 2 9
e) Loss of other data......................................................................................................... 1 2 9
ASK ALL
Q7. Who, in your opinion, is responsible for ensuring your security on the internet?
[READ OUT–ROTATE- MULTIPLE RESPONSES POSSIBLE]
- Me, personally ..............................................................................1
- My equipment and software suppliers ..........................................2
- My internet access provider ..........................................................3
- The public authorities ...................................................................4
- The organisation providing an on-line service (ex. my bank, the shop selling on-line)
.........................................................................................................5
- [DK/NA] .......................................................................................9
Q8. Would you consider participating in a few hours’ course on IT Security to increase your
knowledge on security when you use the internet?
-Yes, if it is offered for free.............................................................1
- Yes, and I am willing to pay for it ................................................2
- No, because I have already attended a course in the past .............3
- No, because I know enough about IT security to protect myself..4
- No, because I don’t know enough about computers .....................5
- [Other reasons]..............................................................................6
- [DK/NA] .......................................................................................9
page
57
Annex
Flash EB No 250 – Confidence in the Information Society
D1. Gender [DO NOT ASK - MARK APPROPRIATE]
[ 1 ]
Male
[ 2 ]
Female
D2. How old are you?
[_][_]
years
old
[ 0 0 ] [REFUSAL/NO ANSWER]
D3. As far as your current occupation is concerned, would you say you are self-employed, an
employee, a manual worker or would you say that you are without a professional activity?
Does it mean that you are a(n)...
[IF A RESPONSE TO THE MAIN CATEGORY IS GIVEN, READ OUT THE RESPECTIVE
SUB-CATEGORIES]
- Self-employed
i.e. : - farmer, forester, fisherman.................................................................... 11
- owner of a shop, craftsman ................................................................... 12
- professional (lawyer, medical practitioner, accountant, architect,...)... 13
- manager of a company .......................................................................... 14
-
other ....................................................................................................... 15
- Employee
i.e. : - professional (employed doctor, lawyer, accountant, architect)............ 21
- general management, director or top management............................... 22
- middle management .............................................................................. 23
-
Civil
servant........................................................................................... 24
-
office
clerk ............................................................................................. 25
- other employee (salesman, nurse, etc...) ............................................... 26
-
other ....................................................................................................... 27
- Manual worker
i.e. : - supervisor / foreman (team manager, etc...) ........................................ 31
- Manual worker....................................................................................... 32
- unskilled manual worker ....................................................................... 33
-
other ....................................................................................................... 34
- Without a professional activity
i.e. : - looking after the home........................................................................... 41
- student (full time) .................................................................................. 42
-
retired
.................................................................................................... 43
- seeking a job .......................................................................................... 44
-
other ....................................................................................................... 45
-
[Refusal]................................................................................................................ 99
D6.
Would you say you live in a ...?
- metropolitan zone..........................................................................1
page
58
Flash EB No 250 – Confidence in the Information Society
Annex
- other town/urban centre ................................................................2
- rural zone ......................................................................................3
- [Refusal]........................................................................................9
D10. What is the highest level of education you have acquired?
- Primary education .........................................................................1
- Secondary education .....................................................................2
- Higher education...........................................................................3
- [Refused].......................................................................................9
page
59
