According to a survey, fewer than a third of companies (31 per cent) have clauses in contracts with their suppliers regarding cyber risk, according to the UK government.
A report, The Cyber Governance Health Check, found 14 per cent have other arrangements such as pre-contract diligence, third-party audit and third-party self-assessment.