@Amos
Possibly this is the difference between e-banking and e-commerce?
A short summary breakdown of our connections shows:
Windows 7 with IE 8, 9 or 10 requires TLS1.0 by default, the client can turn on TLS1.2 but rarely does
Windows Vista with IE 7 or 8 requires TLS1.0
Windows XP with IE7 or 8 requires TLS1.0 - IE6 protocol mismatch, can't connect.
Windows Mobile 8.0 requires TLS1.0
Android versions older than 4.4 require TLS1.0
OSX 10.8 requires TLS1.0
Safari 6 or older requires TLS1.0
Anything using OPenSSL 0.9 or earlier require TLS1.0
Anything written in Java 7u25 or earlier require TLS1.0
In addition to direct browser connections, we also provide an API to various external web sites, and by far the majority of those sites use software written in older versions of Java which require TLS1.0 to access our services. (Including, I might add, ATOS Worldline, who have so far refused to update their stack).
The running total as of today is 38.7% of all connections to us use TLS1.0