I wish I could afford such Luddite approach. Unfortunately I cannot as I have old ongoing "retirement site" projects in another country as well as old relatives to support there. So I have no choice but to pay all bills there electronically as well as regularly pay various people (builders, insurer, security, etc) by bank transfer.
Similarly and for the same reason I am regularly out of the UK for months at a time - if I rely on getting paper for anything I will not pay stuff on time and/or not be able to pay it from abroad.
So all I can do is mitigate the risk and do exactly what the survey has observed - limit my activity online to minimize the risk of a data breach:
1. Bank. I would suggest changing the bank and/or credit card company if they are data/security/online (or all of) clueless. I fired HSBC a few years back for that. In the UK Nationwide are pretty good (so far). Abroad - the situation gets better the higher the security threat. The most clued up banks I have dealt with were in Eastern Europe (they have to be - to survive). The ones in biggest need of a clue bat are in the USA.
2. Shopping. Use as few online shopping sources as possible. You may loathe Amazon, but it is pretty good at keeping your data safe as well as allowing third parties and merchants only enough data to complete a transaction. Ditto for booking.com - it is universally hated by all hotles, but it mitigates your risk when setting up travel.
3. A continuation of 2 - never ever shop trawl for a cheaper bargain outside the "well lit" areas. Google can show as many prices as they like when I search. Stuff 'em.
4. Adblock on all machines, no-script where applicable and a transparent proxy with AV for the whole house.
5. No financial transactions or banking apps on Android, iPhone, etc. Sorry, their security is nowhere near a well maintained Linux box with Firefox armed to the teeth with no-ad/no-script extensions,
6. If available in the country (unfortunately I have seen it only in Eastern Europe), payment of utility bills through a 3rd party payment processor/aggregator which uses 2FA. For example - the local equivalent of PayPal in Bulgaria has had a fantastic (and rather bombproof) system to do that for nearly 10 years now.