HTTPS is primarily designed to provide an enhanced security layer over the unsecured HTTP protocol for sensitive data and transactions such as billing details, credit card transactions, user logins and more.
HTTPS is configured and supported by default in most web browsers. When navigating a webpage, the browser automatically looks at the URL to determine if the page is using HTTP or HTTPS. If the page is using HTTPS, the browser exchanges some SSL parameters with the web server, and then opens up a secure connection. The web browser automatically seeks out the certificate, which doesn’t require any action on the user’s part in most situations.
You can tell if a page is using HTTPS by looking at the URL displayed in the web browser, users will see a green padlock icon in the browser address bar.
Benefits of HTTPS
- Security: HTTPS makes your website substantially more secure from hacking and other security breaches. Customer information, like a credit card number, is encrypted and cannot be intercepted.
- Search Engine Optimisation (SEO): HTTPS helps SEO by improving your site’s ranking in search engine results.
- Brand Trust: HTTPS builds trust. Customers are more likely to trust and complete purchases from sites that use HTTPS.
- Google Referral Traffic Data: If you are using Google Analytics to track your website’s traffic and performance, HTTP referral data is blocked, and all traffic from HTTPS websites is considered direct traffic.
HTTP vs HTTPS
Most webpages found on the Internet today use HTTP because the requested information is less likely to need to be secure. For example, accessing a news article is unlikely to involve the exchange of sensitive information. However, with an HTTPS connection, all communications are securely encrypted. This means even if someone managed to break into the connection, they would not be able to decrypt any of the data which passes between you and the website.
HTTPS Compatibility Exception
There are some Vistaprint sites that will not be compliant with HTTPS requirements and will default to http:// rather than https:// due to HTML blocks (Sitebuilder 4), modules (Sitebuilder 3) or widgets (Sitebuilder 2) on your page. Contact Support if you believe your site is secure but are still seeing http:// or "not secure" alerts in your browser's address bar when visiting your site.