How does SSL fit with GDPR
With GDPR (Data Protection 2018) Secure certificates (SSL) are needed if you're using an online enquiry form.
Security has always been a priority for Google and we know that it is starting to use HTTPS as a ranking signal. But it doesn't stop there, if your website is using an online form, then it needs to have an SSL certificate.
Chrome is marking non-secure pages containing password and credit card input fields as Not Secure in the URL bar. In a way that's not surprising since Secure Certificates (SSL) have always been used/needed to encrypt and secure data transfer.
The good news is that from an secure certificates (SSL) and GDPR are all best practices anyway. If you're putting all your IFA website pages under https and using certificates to authenticate and encrypt communications between internal systems, you're meeting the GDPR requirements for that component of data protection. And if you're not, you should be doing so anyway in order to protect your customers, your business, and maximise confidence in your IFA website.
Eventually, Chrome will show a Not Secure warning for all pages served over HTTP, regardless of whether or not the page contains sensitive input fields. You should plan to migrate your site to use HTTPS for all pages.
A secure certificate is used to make sure that data can't be intercepted by anyone as it moves across the internet. It's something we will provide with all new sites.
Secure Certificates are the solution and are very cheap these days. They encrypt the data before sending it over the internet where is decrypted safely at the other end. This is something we include in our website prices. You'll be pleased to know we don't believe in extra charges.
Why switch to HTTPS?
There has been much lot of discussion on the internet about converting your website to HTTPS. Historically SSL certificates were reserved for data entry and payments. So many web developers are still confused whether it's worth the effort to implement an encrypted certificate and see it as an overkill.
Very few websites (percentage wise) have made or plan to make the change to HTTPS, certainly not in the near future. Google has stated that if all other factors are equal, HTTPS can act as a tiebreaker in the search engine results, which is why we would like to future proof all our sites.