Avoiding the Not Secure Warning in Google Chrome

Avoid the Not Secure warning in Google Chrome by enabling HTTPS

Could your website be scaring off visitors? 

It's no secret that Google favors HTTPS sites, but now it seems they are getting serious about security. If someone visits your website and sees a 'Not Secure' warning, you are going to have a lot of people closing the tab, possibly never to return again.

You can avoid that though! I'm going to explain to you what an SSL certificate does, why your site needs it, and how you can get one.


What does an SSL certificate do?

SSL certificates encrypt data as it zooms across the internet. SSL is essential for protecting your website and your users' personal information. Even if your site doesn't handle sensitive information like credit cards, SSL is recommended.

http-not-secure-warning.jpg

Without encryption, any computer in between you and the server can see important information like credit card numbers, usernames, and passwords. When an SSL certificate is used, the information becomes unreadable to everyone except for the server you are sending the information to. 

How can I tell if my site is secure? 

chrome-secure-padlock.jpg

You can tell just by visiting your site. Your browser will display a padlock and 'Secure' right in the search bar. 

You can also visit SSL Shopper to check whether or not your site is good to go.


How much is an SSL certificate? 

Anywhere from free to hundreds. In general, any SSL will do, so there's no need to shop around for the most expensive certificate. In fact, your host might be proving them for free!

For example, Squarespace offers free SSL certificates for all Squarespace Domains and third-party domains connected and pointing to a Squarespace site (DataBabe is a GoDaddy domain hosted on Squarespace).

For a free SSL certificate, check out https://letsencrypt.org/ though not all hosting companies will accept it. 

Other links that may be helpful:


Okay, I have an SSL certificate, now what? 

Make sure it is installed. Some hosting companies will install it automatically after purchasing. And it's also very important to make sure your site has an HTTPS redirect. Again, some hosts will do this automatically, some won't. Definitely a question worth asking.

If you think you have it installed and still aren't seeing the green padlock, check out Why No Padlock to discover any insecure items on your SSL page.

TL;DR 

SSL certificates will help protect your site and its users. It is not a matter of IF your non-secure site will get flagged, but when. Stay ahead of the game!